Recently added quite a few finger-sized gadgets!
- Kingston DataTraveler Exodia 64GB
- Orico USB-C female to USB-A male
- PortaPow Data Blocker Pure - Prevents juice jacking
- Sandisk Ultra Luxe 64GB
- Kingston Ironkey Locker+ 50 32GB
- Yubico Security Key USB C NFC

Really happy with the performance of each product so far.

#usbflashdrive #KingstonIronkeyLocker50 #IronKey #yubico #yubikeys #Orico #portapow #juicejacking #sandisk #flashdrives #securitykeys #datablocker #usbcondom #newtoys

Wir meinen es ernst, mit dem Absichern unserer kritischen Systeme.
Ein Teil der über 4k #yubikeys die wir demnächst verteilen
#mfa #fau #rrze

@frank @keno3003 Du meinst Resident Keys: https://duo.com/labs/tech-notes/resident-keys-and-the-future-of-webauthn-fido2

AFAIK brauchst du die nur für #Passkeys aber nicht für Standard #FIDO2. Mein #Solokeys hat 50 slots für Resident Keys, manche #Yubikeys nur 25.

Du kannst aber unendlich viele FIDO2 Services mit einem Token betreiben. Noch ein Vorteil von FIDO2 HW-Token.

HTH

So apparently, according to Yubico's CS, they accidentally placed a "normal", no-barcode Security Key into an "Enterprise Edition" packaging and told me not worry about it. They advised me to reset the key with ykman if I was still worried.

#yubikey #yubikeys #yubico #OnlineSecurity #CyberSecurity #hardwarekey #securitykeys #fido2

They're here! Not sure why I got the Enterprise Edition though... Seems the only difference is a bar code on the backside compared to having nothing on the normal version. #yubikey #yubikeys #yubico #CyberSecurity #OnlineSecurity #securitykeys #2FAkey #2fa

@arthurzenika Deux #Yubikeys, USB A et USB C (et ça fait backup d'en avoir deux).

Avec je fais du webauthn (ça marche presque partout sauf chez ma banque #lol) et agent #SSH (mais pas de #PGP, que je fais « à l'ancienne »).

Pas de TOTP : (enfin plus de TOTP, j'en ai fait il y a longtemps). Avant j'avais Android, donc je n'avais aucune confiance en mon téléphone, donc j'ai arrêté le #TOTP, et maintenant j'utilise #Mobian, ça va mieux niveau confiance, mais pas assez pour faire du TOTP.

For actually using the hardware key on macOS login (not Apple ID), you need the more expensive @yubico 5 series keys as they support PIV. So don't buy the wrong key! If in doubt, and budget allows, get the 5 series.

And another common service to use 2fa hardware keys is @bitwarden. You need Bitwarden Premium to use it, not the free tier.

#2fa #2FAkey #yubikey #yubikeys #yubico #OnlineSecurity #macos #hardwarekey #bitwarden

For those who want to use hardware security keys to secure your Apple ID, make sure you fulfil these requirements: all your devices need to support iOS 16.3, iPadOS 16.3, macOS Ventura 13.2, or later. They also ask you to register at least two hardware keys when you activate hardware security keys on your Apple ID.

https://support.apple.com/HT213154

#fido2 #FIDO2Protocol #2fa #2FAkey #yubikey #yubikeys #yubico #OnlineSecurity #appleid #hardwarekey

Gonna be buying 2 hardware keys to up my online security game. Chose the @yubico more budget friendly, Security Key series—one USB-C, one USB-A. I also just read that Firefox 114 (June 2023) on macOS and AWS now supports FIDO2. Hope the setup is smooth sailing! Been wanting to use a hardware key for ages...

https://www.yubico.com/blog/amazon-web-services-aws-announces-support-for-fido2-security-keys-in-aws-govcloud-iam-policy-improvements/

https://www.yubico.com/blog/firefox-support-for-fido2-authenticators-is-here/

#fido2 #FIDO2Protocol #2fa #2FAkey #yubikey #yubikeys #yubico #OnlineSecurity #firefox #macos

Poll (select all that applies)

@Efani Now for my least favorite part of making new accounts. Grabbing ALL of my @yubico #yubikeys to add my TOTP of FIDO/WebAuthn for my 2FA for security. Well at least I have plenty of backups. Ones with stickers are for work
#yubikey #cybersecurity #infosec #yubicoambassador #privacy #SIMswap #cellphone

@chris hope springs eternal. My big win of finally getting rid of authy, increased prevalence of sites that allow #yubikeys, #solus coming back alive, cool distros like #Bohdi, companies like #system76, and search engines likes #mojeek are so cool and make me happy.

@Solus @system76 @Mojeek @yubico

Oooooh yeah. I wanted to set up #FDE again, but just saw a guide to do FDE with #yubikeys.

Yess!!!

A research found a way to recover the #keepass password from memory dumps, This affects all versions before 2.54, which has not been released.

The article suggests to use #yubikeys to store the password because this keeps the password out of the system memory.

I'm quite sure this is wrong. You can even see the password entered by the #Yubikey. I this case the yubikey is acting like a keyboard and typing a (long random) password for you.

#dfir

https://www.malwarebytes.com/blog/news/2023/05/keepass-vulnerability-allows-attackers-to-access-the-master-password

@mlnf Aber unterwegs Überweisen ist schon auch notwendig.

Würden Banken mal gängige 2FA Methoden wie #WebAuth bzw. #Yubikeys akzeptieren...

How is it different from other hardware security thingies you may know?

#Yubikeys don't store passwords and are not open source. They do #2FA, which #Signet does not.

#Nitrokeys store 0 to 16 passwords (depending on the model). Signet can store hundreds of passwords. Nitrokeys do things like email encryption and #FIDO2 (depending on the model), which Signet does not.

The #Trezor Model T does not store passwords. It does FIDO2 and holds your digital currencies.

I was already slowly moving away from #LastPass after the previous info about their breach. Yet the latest update is such a complete nightmare that I rushed through the process of deleting / updating everything that was associated with it.

FML what a dull way to spend an entire day.

On the bright side, I learned that #Mastodon supports #Yubico #YubiKeys and I'm just tickled that I get to use it here.

Today the Yubico Blog announced general (consumer) availability of their new Security Key by Yubico.

https://www.yubico.com/blog/expanded-security-key-series-now-available-phishing-resistant-fido-only-mfa-for-enterprises-and-individuals/

This is now the second set of keys to divert from the previous "black = full-featured YubiKey 5 Series" color scheme (the first being the YubiKey Bio FIDO Edition), these keys are visually very similar to the full YubiKey 5, but bear the word "FIDO" on the back to differentiate.

I think the YubiEnterprise-issued keys may be the only ones that will also bear a serial number?

#yubico #yubikeys

Just want to give a positive shout out to #Putty CAC SSH, the fork of Putty that gives you smart card support and works with #YubiKeys. Good stuff!

https://github.com/NoMoreFood/putty-cac

so, question for the security peeps - #365 break glass account: #MFA or not? My gut feeling is to secure with multiple #Yubikeys, held by senior management but have seen info online suggesting that MFA is disabled and just rely on a secure password and obscure login name. Thoughts?

Just set up my #yubikeys for my Apple account. Good onboarding process with the need for at least two separate keys to enable this feature