HOTforSecurity
  • Home
  • Threats
    • Security alerts
    • Social Networks Security
    • Mobile & Gadgets Security
    • Tips and Tricks
  • Smart Home Security
  • Digital Privacy
    • Digital Identity
    • Good Practices
    • Data Breach Alerts
  • Work from Home: Safety Tips
  • The ABC of Cybersecurity
  • Security Videos
HOTforSecurity
  • Home
  • Threats
    • Security alerts
    • Social Networks Security
    • Mobile & Gadgets Security
    • Tips and Tricks
  • Smart Home Security
  • Digital Privacy
    • Digital Identity
    • Good Practices
    • Data Breach Alerts
  • Work from Home: Safety Tips
  • The ABC of Cybersecurity
  • Security Videos
HOTforSecurity
  • Home
  • Threats
    • Security alerts
    • Social Networks Security
    • Mobile & Gadgets Security
    • Tips and Tricks
  • Smart Home Security
  • Digital Privacy
    • Digital Identity
    • Good Practices
    • Data Breach Alerts
  • Work from Home: Safety Tips
  • The ABC of Cybersecurity
  • Security Videos
Luana PASCU @Luana_Pascu
    Share This!
  • Facebook
  • Twitter
  • Pinterest
  • LinkedIn
  • ReddIt
Social Networks

Facebook introduces delegated recovery to replace passwords, security questions

February 2, 2017
2 Min Read

Facebook has introduced login approvals for users to regain access to accounts if they can’t access phone numbers or security keys. Facebook account owners can now use the Facebook platform to reset passwords for other websites. As of Tuesday, GitHub account holders can use their Facebook accounts as extra authentication in the recovery process, announced Brad Hill, Security Engineer at Facebook.

The new feature, named “delegated recovery,” aims to improve the account recovery experience and privacy by making it difficult for hackers to exploit. This strategy is part of a larger industry push to deploy two-factor authentication across all channels and get rid of the traditional password and outdated security questions.

Like passwords, security questions are often weak and outdated. They are often reused for multiple accounts and can’t be considered safe anymore.

Texts and recovery emails might be slightly more reliable, yet “both are showing their age: neither offers the end-to-end security guarantees we expect from modern protocols, and these methods are becoming less reliable as the next billion people are getting online for the first time,” explained Hill.

The security community and bug bounty program members are counted on for feedback on the feature, this being an important reason for releasing the feature with GitHub.

“We’re releasing this feature in a limited fashion with GitHub so we can get feedback from the security community, including participants in our bug bounty programs,” said Hill.

The protocol behind the feature is available on GitHub.

Tagsdelegated recovery facebook GitHub login approval two-factor authentication

You may also like

Hackers Hijack Indian PM Narendra Modi Twitter Account
Industry News • Social Networks

Hackers Hijack Indian PM Narendra Modi Twitter Account

5 months ago
Industry News • Social Networks

Lawsuit alleges TikTok sends user videos to Chinese servers for surveillance

December 3, 2019
Social Networks

Russia Wants Access to Tinder Photos and Conversations

June 10, 2019

About the author

View All Posts

Luana PASCU

From a young age, Luana knew she wanted to become a writer. After having addressed topics such as NFC, startups, and tech innovation, she has now shifted focus to internet security, with a keen interest in smart homes and IoT threats. Luana is a supporter of women in tech and has a passion for entrepreneurship, technology, and startup culture.

Visiting the US soon? They might want your passwords, financial records
Trump ignores Twitter security, uses personal Gmail account
    Share This!
  • Facebook
  • Twitter
  • Pinterest
  • LinkedIn
  • ReddIt

Promo

1.3m
Fans
Like
104.8k
Followers
Follow
2.7k
Subscribers
Subscribe
19
Subscribers
subscribe
1.4m
Fans Love us

Recent shouts

  • Meurig Parri on Microsoft Ends Support for Windows 7. What You Need to Know
  • Kevin on Cable Haunt vulnerability affects millions of Broadcom cable modems
  • Terry on Ransomware attack forces Arkansas CEO to fire 300 employees days before Christmas
  • Martin on 1&1 Telecom GmbH hit by almost €10 million GDPR fine over poor security at call centre
  • Xander on 1&1 Telecom GmbH hit by almost €10 million GDPR fine over poor security at call centre

Time Machine

January 2021
M T W T F S S
 123
45678910
11121314151617
18192021222324
25262728293031
« Dec    

ANTIVIRUS SOFTWARE FOR HOME USERS

Bitdefender Cybersecurity for Smart Home
Bitdefender Complete Protection
Bitdefender PC Protection
Bitdefender Antivirus for Mac
Bitdefender Mobile Security for Android
Bitdefender Product Comparison

BUSINESS SOLUTIONS

Bitdefender GravityZone Business Security
Bitdefender GravityZone Advanced Business Security
Bitdefender GravityZone Enterprise Security
Bitdefender Hypervisor Introspection

TOOLS & RESOURCES

Renewal for Business Customers
Trial Downloads
Free Antivirus
Free Online Virus Scanner
Free Virus Removal Tools
Live Remote Assistance
Free Tools
Bug Bounty
Press Center

Powered by Bitdefender - a leading cyber security technology provider | Copyright © 2008 - 2016. All rights reserved.
  • Home
  • The Team
  • Terms and Conditions
  • Contact
We use cookies to ensure that we give you the best experience on our website. If you continue to use this site we will assume that you are happy with it.Ok