This is a bigger problem with apps and devices overall, especially ones which tie in to social media (so you have to use the same one as your friends use if you want to communicate with them). It's like Discord got a shiny $500 hi-tech lock for their front door, then mounted it with masking tape. I believe people have also reported Discord lets you reset the 2FA and login credentials via a simple (spoofed) email too, even if you don't present a recovery code. Meaning anyone who gains access to your computer via hacking or phishing or getting you to visit their webpage which abuses a browser exploit (precisely the types of attack 2FA is supposed to protect against) can read the token, duplicate your Discord session (like you're accessing your Discord account from another device), and run amok with your account. But the tokens are stored on your computer in plaintext. They support 2FA (require it in fact for certain accounts). News, banter, CG & GalNet updates, and a bit of music too Dangerous Links CommunityĮlite Dangerous news & discussion live podcastĬQC Deathmatch on Xbox One with prizes from Pixel BanditsĬM team playing & discussing the game's events Post/comment not appearing? It may have entered our AutoModerator's event horizon. Read the Subreddit's Rules and Removals Info Page before posting
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |