There are two types of passkey. Syncable and device-bound. (see https://fidoalliance.org/passkeys/). Theoretically, the device-bound passkeys never leave the device and users don’t have any access to it except to use it for authentication. The syncable type will first and foremost be synced by the platforms themselves (Google, Microsoft, and Apple), but eventually the 3rd-party password managers will be allowed to be sync providers, but possibly only on newly-released OSes.
As far as I know, the passkey implementations currently on Android and Windows are device-bound; they are not synced to the cloud.
It works for Google, Adobe, and Github for me, on Firefox; those are all the sites I use that support passkeys. It even works with Firefox on Android 13.
Do you have Windows hello enabled? You may want to investigate this more.
This is from the horse’s mouth: https://fidoalliance.org/passkeys/
It is a FIDO alliance protocol. This is meant to replace/supplement password, not as 2FA. The sites I use that implement it, Google, Adobe, and Github use it to supplant both the password and 2FA. Cool thing about it is more less: 1) unphishable 2) doesn’t matter if the website’s passphrase data leaks.
And Tiktok!
Firefox ESR 102.15 & windows 11 (Hello) seem to work fine.
Yeah, neither seems likely any time soon.
Thx. You don’t seem to be the only one.
In July 2022, Charlie Osborne of ZDNet suggested that individuals who suspect a Pegasus infection use a secondary device with GrapheneOS for secure communication.
https://www.zdnet.com/article/how-to-find-and-remove-spyware-from-your-phone/
Well, that’s most terrifying. Can you do anything about it except not using smartphones?
They need those brain cells to combat the scams, and hence, less dementia. ;-)
Thanks. This could be a useful tool, but the scoring seems a bit “beta” at the moment. Still like the Recommended flair for Firefox better.
TLDR;
In November 2022, LastPass, a password manager service, suffered a data breach in which hackers stole password vaults containing encrypted and plaintext data for over 25 million users. Since then, there has been a series of cryptocurrency thefts targeting individuals in the tech industry, totaling more than $35 million. These thefts primarily targeted individuals deeply integrated into the cryptocurrency ecosystem, including employees of crypto organizations and venture capitalists.
Researchers, led by Taylor Monahan, CEO of MetaMask, have identified a common factor among these victims: they had previously used LastPass to store their “seed phrase,” which is a critical private key for accessing their cryptocurrency investments. Armed with this seed phrase, attackers can instantly access and transfer the victim’s cryptocurrency holdings.
The LastPass breach exposed vulnerabilities in its security, particularly related to the master passwords and encryption settings. LastPass users who stored important passwords, especially for cryptocurrency accounts, are urged to change their credentials immediately and migrate their crypto holdings to offline hardware wallets. Alternatives like 1Password, which offer additional security layers like a Secret Key, are recommended.
While the research suggests a strong link between the LastPass breach and the cryptocurrency thefts, it’s challenging to definitively prove causation. Nonetheless, security experts advise taking immediate action to protect digital assets.
If you follow the weather photo contest link in the post, you can see more fantastic photo. Some others are pretty unreal too.
How convenient. Now we can blame the “accidental” killing on the bots.
The first time because the cars will be coming from the left. The second time to make sure you didn’t misjudge the first time.
If you live in a country where the traffic directions reverse, you can teach the kid the opposite thing.
This is just a simple rule of thumb. Obviously, you don’t want anything to run into you in any directions, which is a real danger in a busy intersection.
Don’t know for sure, but if this was posted in the privacy group, probably lots. OTH, from https://www.demandsage.com/gmail-statistics/ , there are 1.8 billion active gmail users, with 121 billion emails (probably including spams) sent a day. If you are using an Android phone (3.6 billion active phones worldwide) and not using custom ROM, you most likely are using Google services.
From the sound of this one, the person probably didn’t even have 2FA. Someone took over the phone number, requested for password reset, and got access to the accounts.
deleted by creator
Typically, people aren’t always bored, because otherwise, you are basically emotionally flat and depressed and soon will be suicidal. Have you seen kids that say they are bored? It just means they are not doing anything that interest them.
To get “unbored”, you most likely need to be doing something that is fun, and/or meaningful, and/or enjoyable, and/or worthy, and/or essential to survival (in a way, people who are bored may be having it too easy). It may be better to be doing something productive, personally or socially, than doing something just addictive.
Even being still meditating is doing something (like actively paying attention to the breath).