Facebook adding U2F support is an important step in pushing forward the adoption of physical security keys, and potentially making millions of Facebook accounts more secure.

The link leads to the the Facebook Security page where users are taught how to spot a scam, pick a unique password, and most interestingly, confirm their mobile phone number for account recovery.

Facebook has confirmed it does in fact use phone numbers that users provided it for security purposes to also target them with ads. Specifically a phone number handed over for two factor ...

Facebook announced that it now supports physical security keys as a second form of identification for users looking to safeguard their accounts online. A security key is a USB-based device that ...

And now, as security researcher and New York Times columnist Zeynep Tufekci pointed out, Facebook is allowing anyone to look up a user by their phone number, the same phone number that was ...

Other times, Facebook will ask for a user’s phone number to set up two-factor authentication—then spam the number with notification texts.

Facebook is now alerting anyone that they deem to be capable of reaching a large audience that they too should update their security settings.

This resulted in an attacker being able to link a victim’s phone number to their own Facebook account, brute force the two-factor SMS code, and disable the victim’s two-factor authentication.