Let's Stop Blaming Our Users for Getting Hacked When It Is Our Problem to Solve

Explore a compelling conference talk that challenges the notion of blaming users for security breaches in web applications. Delve into the limitations of traditional two-factor authentication methods and discover why FIDO2 is now recommended by OWASP and NIST as a more secure alternative. Learn about the vulnerabilities of common 2FA mechanisms, witness a demonstration of phishing techniques using Evilginx, and gain insights into the world of biometric authentication. Uncover the developer's perspective on implementing WebAuthn and FIDO2 to enhance user protection and create more robust security measures for web applications.

Let’s stop blaming our users for getting hacked when it is our problem to solve - Scott Brady