しかしやっぱり電話番号をバックアップにしておくのは危険そうね
第2要素に電話番号を使わないようにしておいても、メールアドレスを変更されて電話番号を使うようにされちゃうん?
https://krebsonsecurity.com/2020/07/whos-behind-wednesdays-epic-twitter-hack/
krebsonsecurity.comWho’s Behind Wednesday’s Epic Twitter Hack? — Krebs on Security
> “The way the attack worked was that within Twitter’s admin tools, apparently you can update the email address of any Twitter user, and it does this without sending any kind of notification to the user,” Lucky told KrebsOnSecurity. “So [the attackers] could avoid detection by updating the email address on the account first, and then turning off 2FA.”
あー
https://krebsonsecurity.com/2020/07/whos-behind-wednesdays-epic-twitter-hack/
krebsonsecurity.comWho’s Behind Wednesday’s Epic Twitter Hack? — Krebs on Security