hi everyone,
just logged in today to check on updates and google informed me that there had been a data breach.
confirming that this is a thing: https://support.google.com/chrome/thread/23534509?hl=en
may want to see if you're at risk
Let's hope individuals do not use the same passwords. Threat actors tend to get password dumps and run through multiple sites with those dumps. Hopefully everyone has a password manager and has those passwords different per site :) If not, reset your passwords and enforce second factor authentication (if the site offers it).
For any member who is supporting this game, MFA would be ideal! (Multi-factor authentication) Is that possible to enable on this site?
-sYnFury
sYnFury said:For any member who is supporting this game, MFA would be ideal! (Multi-factor authentication) Is that possible to enable on this site?
-sYnFury
I think you will get a quicker response to your question (which I don't know the answer to) if you submit it in a support ticket. Link at top of page. They are very quick and helpful as many on the forums will attest to.
Alternately, you could just make a post in the "website support" section at the bottom of the main forum page.
Welcome to the forums, thank for pledging :)
Jothany said:sYnFury said:For any member who is supporting this game, MFA would be ideal! (Multi-factor authentication) Is that possible to enable on this site?
-sYnFury
I think you will get a quicker response to your question (which I don't know the answer to) if you submit it in a support ticket. Link at top of page. They are very quick and helpful as many on the forums will attest to.
Alternately, you could just make a post in the "website support" section at the bottom of the main forum page.
Welcome to the forums, thank for pledging :)
I asked, to support, several months ago about MFA. Here is their response, entire e-mail copied for reference.
We are aware of the issues with the SMS authentication. Currently, we are using a system that works with an app on your phone. I don't know if that will be the system we use at launch.
Thanks for contacting Pantheon Support
Kilsin said to open a feedback ticket about this.
A little background. I am a systems and network engineer that works in the InfoSec department of a large non-profit healthcare system.
Question/Comment... If you guys are going to implement 2FA for accounts, please please please please do not tie it into SMS/texting. Please tie it into a real 2FA token (either physical or phone app) like RSA/Symantec VIP Access/Duo/etc. If you need a semi-detailed explanation of why SMS based 2FA is bad, I can provide one.....hehehe