Significant forms of phishing are stopped by U2F (as used by Yubikey and others)... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		monoideism on July 31, 2020 \| parent \| context \| favorite \| on: An update on our security incident Significant forms of phishing are stopped by U2F (as used by Yubikey and others), by crytographically binding your credential to the domain name , and only issuing an approval signature if the site matches. Obviously, this stops credential phishing. https://krebsonsecurity.com/2018/07/google-security-keys-neu... https://medium.com/@antonisikora/how-u2f-security-keys-can-e...

Thorrez on July 31, 2020 [–]

You and zamalek appear to be in agreement.

monoideism on July 31, 2020 | [–]

You're right - I misread the comment. I'd delete my comment if I could.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact