Google Security Vulnerability Allowed Two-Step Verification Bypass

green balloon floating above a bunch of white balloons

10 Ways IT Leaders Can Encourage Employees to Be More Green 10 Ways IT Leaders Can Encourage Employees to Be More Green

byPam Baker

Apr 19, 2024

10 Slides

Concept of an untrained IT user.

Working With Non-IT Users Who Do IT Working With Non-IT Users Who Do IT

byMary E. Shacklett

Apr 19, 2024

5 Min Read

Resilience

Recent in Resilience

thumbnail

What CIOs Can Learn from an Attempted Deepfake Call What CIOs Can Learn from an Attempted Deepfake Call

cyber resilienct text on yellow background with crumpled paper strewn about

Apr 18, 2024

7 Min Read

What Is the Cyber Resilience Act? Secure EU Compliance Simplified What Is the Cyber Resilience Act? Secure EU Compliance Simplified

byPam Baker

Apr 18, 2024

10 Min Read

ML & AI

Recent in ML & AI

Revolutionizing Healthcare: The Impact of AI in Personalized Medicine and Beyond Revolutionizing Healthcare: The Impact of AI in Personalized Medicine and Beyond

Healthcare

Machine Learning & AI

byFPT Staff

Apr 29, 2024

5 Min Read

thumbnail

What CIOs Can Learn from an Attempted Deepfake Call What CIOs Can Learn from an Attempted Deepfake Call

Apr 18, 2024

7 Min Read

Data

Recent in Data

Anthony Scaramucci, with SkyBridge Capital, and Danielle Nicholson, with Builderbloc, at the New York Fintech Conference.

Fintech

AI, Bitcoin, and Distilled Spirits at New York Fintech Week AI, Bitcoin, and Distilled Spirits at New York Fintech Week

Online Privacy Security Threat Abstract Background Art

Apr 12, 2024

11 Min Read

Cyber Risks When Job Hunters Become the Hunted Cyber Risks When Job Hunters Become the Hunted

Apr 9, 2024

9 Min Read

Sustainability

Recent in Sustainability

Sophia Mendelsohn, chief sustainability officer with SAP.

Sustainability

SAP’s Sophia Mendelsohn on Using AI to Scale Sustainability SAP’s Sophia Mendelsohn on Using AI to Scale Sustainability

Robot hand with green plug, plug socket

Apr 9, 2024

5 Min Read

Sustainability

Confronting the AI Energy Drain Confronting the AI Energy Drain

byRichard Pallardy

Apr 1, 2024

14 Min Read

Infrastructure

Recent in Infrastructure

strong water splashing over white background

IT Infrastructure

What is Liquid Cooling and How Can It Help Data Centers?What is Liquid Cooling and How Can It Help Data Centers?

byRichard Pallardy

Apr 17, 2024

13 Min Read

A view of Purdue University's campus.

Fixing Purdue University’s IT Network with Help from Cisco Fixing Purdue University’s IT Network with Help from Cisco

Apr 16, 2024

6 Min Read

Software

Recent in Software

Organizations' Inertia Versus Software Innovation Organizations' Inertia Versus Software Innovation

hand holding a lightbulb

Software & Services

byWeldon Dodd

Apr 19, 2024

4 Min Read

ZF Driving Intelligence for Software-defined Vehicles presented at the IAA Mobility 2021 motor show in Munich, Germany - September 6, 2021

Software & Services

Software-Defined Vehicles: Ready to Hit the Road Software-Defined Vehicles: Ready to Hit the Road

byJohn Edwards

Apr 1, 2024

5 Min Read

Newsletters
Reports/Research
Online Events
Live Events
Podcasts

White Papers
Advertise With Us
About Us
IT Sectors

InformationWeek Resource Library

Cyber Resilience
Cybersecurity

Researchers at Duo Security detailed an attack that could have allowed a hacker to hijack a user's Google account

InformationWeek Staff, Contributor

February 27, 2013

1 Min Read

Google has fixed a security hole that permitted attackers to potentially bypass the company's two-step verification feature and take over user accounts.

According to Duo Security, the vulnerability rested in the way application-specific passwords (ASPs) were used for applications that do not support logins using two-step verification. Designed with an eye towards improving account security, two-step verification provides users with a special code via text message or phone call when they attempt to log on to their Google account. The user will then have to enter that code as well in order to log in.

... Read full story on Dark Reading

About the Author(s)

InformationWeek Staff

Contributor

See more from InformationWeek Staff

Never Miss a Beat: Get a snapshot of the issues affecting the IT industry straight to your inbox.

SIGN-UP

Editor's Choice

NHL's Calgary Flames at New Jersey Devils on February 8, 2024 in Newark, NJ

IT Infrastructure

NHL, Presidio, and a Transformation Power Move with Hybrid Cloud NHL, Presidio, and a Transformation Power Move with Hybrid Cloud

Online Privacy Security Threat Abstract Background Art

Apr 5, 2024

6 Min Read

Cyber Risks When Job Hunters Become the Hunted Cyber Risks When Job Hunters Become the Hunted

Business innovative solution and creative concept as a paper boat tied to a light bulb

Apr 9, 2024

9 Min Read