Privacy technologiesfromArs Technica6 days agoMillions of people imperiled through sign-in links sent by SMSSMS authentication links with guessable or long-lived tokens expose millions to account takeover, identity theft, and data exposure.