GitHub will begin its official rollout of two-factor authentication for developers who contribute code on the platform, starting March 13. GitHub added that it will support SMS text messages as a second factor, while testing FIDO Alliance passkeys internally to improve the security posture. “It is true that SMS 2FA can be easily phished by hackers as it relies on knowledge-based credentials. But GitHub recognizes these risks and strongly recommends using security keys and TOTPS wherever possible for greater security – [and] will continue to offer SMS for 2FA – which is better than removing the option entirely,” said Andrew Shikiar, executive director of the FIDO Alliance.


More

Cyber Insider: ExpressVPN adds passkeys on password manager, passes security audit

ExpressVPN has announced a major update to its standalone ExpressKeys password manager, adding passkey support,…

Read More →

Tech Radar Pro: Know your agent: building the foundation of autonomous commerce

Artificial intelligence has officially entered its execution phase. After years of experimentation, businesses are rapidly deploying…

Read More →

PaymentsJournal: EMVCo Proposes Standards for Stronger Payment Authentication

EMVCo has released a draft framework that could pave the way for a universal standard…

Read More →


123330 Next

Subscribe to the FIDO newsletter

Stay Connected, Stay Engaged

Receive the latest news, events, research and implementation guidance from the FIDO Alliance. Learn about digital identity and fast, phishing-resistant authentication with passkeys.