|
|
|
|
|
|
by sufficient
2138 days ago
|
|
|
I agree that it's weird that they fixed it and didn't consider it a security issue. For the user it looked like it would provide two-factor authentication since the PIN is requested, while in reality it's not verified. Thus, they only provided one-factor security. |
|
|