Keybase CEO talking about Slack being compromised and how it affected them https://keybase.io/blog/slack-incident
But here's the really interesting bit:
> Though Slack originally told me 2FA would provide "a bit of extra security," these new data show otherwise. If the attackers inject server code, 2FA or U2F or any Web-based security practice does little.
2FA helps protect against password reuse, not much else.
Chirp! is a social network. It runs on GNU social, version 2.0.1-beta0, available under the GNU Affero General Public License.
All Chirp! content and data are available under the Creative Commons Attribution 3.0 license.