Menu
What's new
By:
Filters

2-Factor Authorization not working

José Herring

José Herring

Lost in Cyberspace
Hello,
I was recently the victim of a horrifically criminal facebook hack brought about by my information being breached. I'm now going around and tightening up security on every account that I haven't outright just deleted at this point.
I did check the box of 2FA on this account and even logged it with the authenticator App but it doesn't appear to be working. The 2FA never verifies and I can log on just with my encrypted password and username.

Am I doing something wrong or is it a forum bug?

So I've deleted every account that anybody could possibly do that to me again in the future.

So my social media footprint is down now to two sites that I feel I can't get rid of. VIC made the short list. Please help me to fix 2FA.

Thanks
Click to read more...
 
Last edited:
Damn! Sorry to hear that. Glad to hear Vi C is on the short list :thumbsup:

I also tried enabling 2fa and I get the same as you - I can still log in with username and password. Maybe it takes a while to kick in? There might be a manual process to enable it, or a batch job that happens once every 24 hours?
 
UPDATE - OK, can you guys try it now? I think it's disabled by default and has to be activated (CHANGE) individually. However, there is a MASTER TWO-STEP setting I just activated. Let me know if this fixed it?

Regards,

Andre

-------------------
VIC Tech support
-------------------
 
creativeforge said:
UPDATE - OK, can you guys try it now? I think it's disabled by default and has to be activated (CHANGE) individually. However, there is a MASTER TWO-STEP setting I just activated. Let me know if this fixed it?

Regards,

Andre

-------------------
VIC Tech support
-------------------
Click to expand...
I'm still able to login with username and passwod.
 
Confirming the 2FA isn't working. I'm able to log into VI-Control without it requesting 2FA codes.
 
José Herring said:
Hello,
I was recently the victim of a horrifically criminal facebook hack brought about by my information being breached. I'm now going around and tightening up security on every account that I haven't outright just deleted at this point.
Click to expand...
My friends on FB frequently have their accounts hacked/compromised through phishing, fake FB-friend profile accounts requesting to friend you, self-quiz polls, etc.

Have you considered using a security (physical) key for all your online accounts?
Facebook even recommends it:
Screen Shot 2022-10-19 at 9.07.27 PM.png

It's like iLok but for online accounts for Google, FB, DropBox, etc.
It's an added layer of security and peace of mind in this day and age.

Security Key.png
 
Daren Audio said:
My friends on FB frequently have their accounts hacked/compromised through phishing, fake FB-friend profile accounts requesting to friend you, self-quiz polls, etc.

Have you considered using a security (physical) key for all your online accounts?
Facebook even recommends it:
Screen Shot 2022-10-19 at 9.07.27 PM.png

It's like iLok but for online accounts for Google, FB, DropBox, etc.
It's an added layer of security and peace of mind in this day and age.

Security Key.png
Click to expand...
Thank you. I just started looking into it and thank you for all the information.
 
2FA works for me. I didn't even know this was an option and probably wasn't when I signed up. You should really promote this option more.
 
Daren Audio said:
My friends on FB frequently have their accounts hacked/compromised through phishing, fake FB-friend profile accounts requesting to friend you, self-quiz polls, etc.

Have you considered using a security (physical) key for all your online accounts?
Facebook even recommends it:
Screen Shot 2022-10-19 at 9.07.27 PM.png

It's like iLok but for online accounts for Google, FB, DropBox, etc.
It's an added layer of security and peace of mind in this day and age.

Security Key.png
Click to expand...
How would I use this with my phone?
 
I didn't even know 2-factor was an option here, and I'd never heard of the Facebook iLok thingie. That's really interesting. I agree we should probably make an announcement, but give me some time to look into all this further, so we don't jump the gun, in case we make further changes.

One thing to keep in mind, though, is this is a small site with a lot of flexibility, so unlike big social media sites, if anything ever happens here, we can fix it pretty easily.

In fact, profiles do sometimes get hacked here, I think because bots get hacked passwords from other sites, then try using them in other places, like here, and sometimes they get lucky. (Lots of people use the same password for all their sites.)

In our case, they invariably then post in the Classifieds section, giving the appearance of a seller with history here. They're pretty easy to spot, so we just delete the new posts and suspend the account until we hear from the actual member.

Same thing would happen with José. If we saw posts from José where he was actually making sense, then we'd know someone must have hacked his account.

:grin:
 
You must log in or register to reply here.
Top Bottom