Comment Re:This Is Actually Terrible News (Score 1) 31
Well, they obviously aren't all using U2F keys.
https://krebsonsecurity.com/20...
“We have had no reported or confirmed account takeovers since implementing security keys at Google,” the spokesperson said. “Users might be asked to authenticate using their security key for many different apps/reasons. It all depends on the sensitivity of the app and the risk of the user at that point in time.”
-=-=-=
I use a U2F key with google. Not seeing much of a way around it. However, with Facebook, I believe you can skip the U2F key if you have another device logged in to FB and you approve the new login from the already logged in device.