zlacker

[parent] [thread] 3 comments
1. Boulth+(OP)[view] [source] 2018-09-27 19:03:48
Wow, it's hard to believe they don't support U2F yet. Even smaller providers such as OVH have U2F for a long time.
replies(1): >>WordSk+21
2. WordSk+21[view] [source] 2018-09-27 19:11:58
>>Boulth+(OP)
Yeah, very surprising. Perhaps companies lose the ability to get this stuff done as they grow larger.

An even more shocking example is Transferwise, supposedly a cutting-edge star of the "fintech" scene. They use SMS-based codes, a wildly insecure form of OTP. Over a thousand employees and they cannot even implement some sort of app-based TOTP (such as Google Authenticator) to protect their clients' money.

replies(1): >>maxgas+pF
◧◩
3. maxgas+pF[view] [source] [discussion] 2018-09-28 00:58:31
>>WordSk+21
Transferwise is quite low risk in this regard. They don't have a balance or anything like that, it's only moving money between 2 accounts in a transactional manner.
replies(1): >>WordSk+Kg1
◧◩◪
4. WordSk+Kg1[view] [source] [discussion] 2018-09-28 11:20:07
>>maxgas+pF
No, Transferwise provide balances as part of their "Borderless banking" accounts: https://transferwise.com/gb/borderless/
[go to top]