If there's none available, then all it would take to hijack an account on those services is a stolen username and password, and that's exactly what credential stuffing is designed to do.Ĭredential stuffing is simple. Tom's Guide signed up for seven well-known food- and grocery-delivery services and found that only two - UberEats and Postmates, both owned by Uber - offered 2FA as an option.ĭoorDash, Grubhub, Instacart, Seamless and Stop & Shop GO Pass did not give us any 2FA option. One of the most effective defenses against credential stuffing is two-factor authentication (2FA), a basic form of account protection that requires a user logging from a new device or location to provide an additional one-time code. Most food-delivery apps have weak protections
0 kommentar(er)
