Leave a legacy.

u2f to protect personal data on My giffgaff with 2-step ("2 factor") authentication option for My giffgaff logins

By: timsmall | 03-12-2015 19:54

There's a lot of personal data on My giffgaff which members need to keep secure.

Companies like Google, Dropbox, Github (soon PayPal, EBay, Visa, Mastercard, Microsoft and others) support the excellent "FIDO u2f" standard so that users can opt-in to secure logins to their websites.

See this example video for how it works: https://www.youtube.com/watch?v=EVx3QkJ8_J0

... since it was made, Microsoft and Firefox have announced upcoming support in their browsers too.

You can buy the USB keys from many different manufacturers from about £5 (some also work with NFC for tablet and phones without plugging in), and use each key with multiple sites (without compromising privacy).

Google, Dropbox, Github all allow users to add these to their account, and require their use either for every login, or just for the first login from a particular computer.

I've been using one for a couple of weeks now, and I think they're great! Google have reported a more than 75% reduction in unauthorised access to accounts (e.g. via malware etc.) for users who use them.



by: mrtoro
on: 06-01-2021 21:33

That makes sense.

by: mr09
on: 10-10-2020 15:30

Sounds good

by: barishna
on: 07-08-2020 05:17

great sounds

by: hsadi42
on: 06-05-2020 20:00

yes supported

by: vijay42924
on: 02-02-2020 13:07

yes supported

by: jpalj
on: 01-01-2020 18:06

The lack of 2FA of any kind on giffgaff accounts is a serious anomaly, particularly since online access is pretty much the only mechanism. It's of particular concern now with the rise of banking authentication/verification and the "popularity" of SIM swap scams. Currently, the only protection from this with giffgaff is your password being safe, which requires it not being stolen, or a weak password.

U2F is a good modern choice, which either uses a cheap token or is also supported by Windows 10 Hello-equipped logins. It's also cross-platform and cross-browser supported.

by: iqbal92307
on: 08-10-2019 14:18

Sounds good

by: tracy71
on: 26-08-2019 11:58

you have got my vote

by: 1445824
on: 20-06-2019 18:44

I have no idea on the cost to Giffgaff to implement u2f, but it would be extremely wise to do so, many companies have, my email supplier for one...If in the future if another network implements this security feature, I would probably change over, even though it may cost more per month, I feel online security is an important feature along with coverage and cost.

by: muddycalhoun
on: 18-06-2019 10:47