[SOLAR_FIELDS]

> FAZAL: Yeah, I thought the same; kind of creepy. But it’s far worse than that. I was talking with someone from another team and they said, go to facebook.com and try to log in with this e-mail and password. We were able to log in to these people’s Facebook accounts.

This is why MFA needs to be a requirement everywhere

[dzhiurgis]

Kinda ironic that social media sites do it better than your bank. My airline even has passkeys!

[SOLAR_FIELDS]

As a minimal social media user, do any social media sites actually require MFA these days? You can have the best security features in the world but if they are opt in and even a slight degradation of UX the vast majority of people will not adopt them. Security often needs to be beaten over the head of the populace to be successful. Let’s Encrypt and HTTPS in the browser is a good example of this.