@B0n3SawMcSizzla wrote:
@dSKyNafinchin It takes 1 or more years to crack a good pword. 2FA is overkill in this case. The casual user who doesn't follow streaming and social media wouldn't think that 2FA is absolutely required for this game. There was a famous streamer who recently was hacked while streaming and he had 2FA enabled. I doubt they spoofed his SMS or took over his email. Was it his fault for not having 2FA on his 2FA lol. Maybe his WiFi was cracked. Luckily he had channels to get his account restored. People will go to great lengths to takeover gaming accounts and a lot of people don't realize this.
Nope, there is shared password lists and lists you can purchase from services cracked, these are washed against email and hence they try those. Most people use the same pwd on several services, a select few use pwd managers. And 2FA makes it easy for all of these to have a secure account even if your password leaks when another service get hacked. People dont brute force your password anylonger.
And using a cuda cluster machine for a price of aprox $4-8K you can bruteforce most 8 char password in only 6 hours (or perhaps even less), passwords in general arena a mechanism considered safe today, and you need 2FA to make basic security these days. The old assessment of 1 year is military assessment for very old hardware, its not true in these days with an abundance of cuda cores and the possibility to split calculations of multiple gpus, you can make short process of most traditional security measures.
