Microsoft is bringing two-factor authentication to its users' accounts over the next couple of days. "With this release you can choose to protect your entire account with two-step verification, regardless of what service (or device) you are using with your Microsoft account," Eric Doerr, group program manager for Microsoft …
User's accounts ...
They have only one user now?
As long as they...
...don't make it as intrusive as Google then I'm all fine with it.
Google keeps nagging that they want my cellphone number because its "very important" that they have that; without it they can't text me "important information to unlock my account" should I ever lose the password.
Re: As long as they...
I downloaded the app they provided that generates a code so they don't need to send a message to my phone. Means it will work when I'm home where I have no cell coverage.
About time from MS too, even Facebook has 2FA now.
Re: As long as they...
>Google keeps nagging that they want my cellphone number
OK, I get that you don't trust Google too much. Still, assuming you do use gmail, here's some pseudocode to ruminate about:
phoneNbrs = grep <phone number regular expression> from <sent mail>
numrefs = select Nbr, count(*) as count from phoneNbrs group by Nbr order by 2 desc
your phone = numrefs.Nbr if len(numrefs) > 10 and numrefs.count > 2*numrefs.count
Personally, and it may be shortsighted, but it's my worldview, I know exactly why Google wants to provide me with free, albeit searchable, email.
To sell ads. Even though I rarely care about ads myself.
In aggregate, that is a very valuable biz for them to be in. Why should they jeopardize it by undertaking nefarious activities that I am not aware of, precisely because they are already where they find it most profitable to be? Selling on contact information to 3rd parties takes Google out of the ad loop and exposes them to public outrage.
To me, a clearly stated profit motive is way more reassuring than all sorts of pious privacy policies that will be ignored at the first whiff of a buck.
Microsoft finally decided to actually use phonefactor having bought it then.
did they remove the maximum password length restriction
"...which is as good as a death sentence for any business [...] that depends on their Microsoft account."
That business is dead already, they just don't know it.
- Mounties always get their man: Heartbleed 'hacker', 19, CUFFED
- Analysis Oh no, Joe: WinPhone users already griping over 8.1 mega-update
- Leaked pics show EMBIGGENED iPhone 6 screen
- Opportunity selfie: Martian winds have given the spunky ol' rover a spring cleaning
- OK, we get the message, Microsoft: Windows Defender splats 1000s of WinXP, Server 2k3 PCs