How to Spot Malicious Two-Factor Authentication Prompts

Condobloke · Sep 16, 2025

yes, I know...another blurb/warning etc....that doomsday is here.

So we can rest assured that you will still have all your dosh (money) and be able to regularly visit us here at Linux.org.......PAY ATTENTION.......please... don't be complacent.

How to Spot Malicious Two-Factor Authentication Prompts

Hackers can get past 2FA if you're not careful.

au.lifehacker.com

This Convincing PayPal Email Is Actually a Scam

Be wary if "PayPal" sends you an urgent message.

au.lifehacker.com

Two-Factor Authentication Can Fail You, but You Can Make It More Secure

Some forms of 2FA can be easily phished.

au.lifehacker.com

https://au.lifehacker.com/security/115594/feature/that-phone-call-from-google-is-probably-a-scam .... With caller ID, seeing isn't always believing

This Clever Phishing Scheme Makes Fake Websites Look Legit

Sneaky characters can fool even those who look carefully at unsolicited links.

au.lifehacker.com

..... Sneaky characters can fool even those who look carefully at unsolicited links.....Yes, it IS clever

KGIII · Sep 16, 2025

Condobloke said:
Sneaky characters can fool even those who look carefully at unsolicited links....

Yup... Something to look into and give some thought to is 'Punycode', which are non-English charactes used in a URL.

This sort of stuff is also why I read my email in plain text. You can easily see the URLs they want you to click on.

I'd also never respond to an unsolicited 2FA prompt. I'd go to the site itself, manually, to see if there was something going on.

wizardfromoz · Sep 17, 2025

I'll have to digest the contents of the linked articles, then come back with a like or comment.

Ta for sharing, Brian.

How to Spot Malicious Two-Factor Authentication Prompts

Condobloke

Well-Known Member