NEW: Two-factor authentication hacking on Google, Facebook and LinkedIn

The following security expert has hacked the two-factor authentication module of Facebook, LinkedIn and Twitter. Shubham Shah, a web application security expert has made a full disclosure on the two-factor authentication vulnerability which existed on Facebook, LinkedIn and Twitter.

The hacker continues to explain that multiple services are vulnerable to the two-factor authentication vulnerability. He mentioned the following services:

  • Snapchat
  • Egnyte
  • Amazon
  • Dynadot
  • Airbnb
  • Elance
  • Zoho
  • Chase
  • Discover
  • Fairwinds

The ethical hacker disclosed these vulnerabilities with various parties. He got a response from telco companies and from the Google security team. If you want to take part on his journey on two-factor authentication hacking. I urge you to read his post here.

He has published all his conversations with the mentioned parties online: