{"id":472275,"date":"2022-07-09T16:00:13","date_gmt":"2022-07-09T13:00:13","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/how-safe-is-two-factor-authentication-exactly-review-geek\/"},"modified":"2022-07-09T16:00:13","modified_gmt":"2022-07-09T13:00:13","slug":"how-safe-is-two-factor-authentication-exactly-review-geek","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/how-safe-is-two-factor-authentication-exactly-review-geek\/","title":{"rendered":"#How Safe Is Two Factor Authentication Exactly? \u2013 Review Geek"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_85 counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-6a303a9d08508\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #dd3333;color:#dd3333\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #dd3333;color:#dd3333\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-6a303a9d08508\" checked aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-1'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/buradabiliyorum.com\/en\/how-safe-is-two-factor-authentication-exactly-review-geek\/#%E2%80%9CHow_Safe_Is_Two_Factor_Authentication_Exactly_%E2%80%93_Review_Geek%E2%80%9D\" >&#8220;How Safe Is Two Factor Authentication Exactly? \u2013 Review Geek&#8221;<\/a><ul class='ez-toc-list-level-2' ><li class='ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/buradabiliyorum.com\/en\/how-safe-is-two-factor-authentication-exactly-review-geek\/#SMS_is_Not_as_Safe_as_It_Seems\" >SMS is Not as Safe as It Seems<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/buradabiliyorum.com\/en\/how-safe-is-two-factor-authentication-exactly-review-geek\/#Email-Based_2FA_Could_Be_Pointless\" >Email-Based 2FA Could Be Pointless<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/buradabiliyorum.com\/en\/how-safe-is-two-factor-authentication-exactly-review-geek\/#Push-Based_Could_Let_You_Down\" >Push-Based Could Let You Down<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/buradabiliyorum.com\/en\/how-safe-is-two-factor-authentication-exactly-review-geek\/#Hardware-Based_2FA_is_A_Lot_of_Effort\" >Hardware-Based 2FA is A Lot of Effort<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/buradabiliyorum.com\/en\/how-safe-is-two-factor-authentication-exactly-review-geek\/#App-Based_2FA_is_Worth_the_Hassle\" >App-Based 2FA is Worth the Hassle<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/buradabiliyorum.com\/en\/how-safe-is-two-factor-authentication-exactly-review-geek\/#You_Should_Still_Use_2FA\" >You Should Still Use 2FA<\/a><\/li><\/ul><\/li><\/ul><\/nav><\/div>\n<h1><span class=\"ez-toc-section\" id=\"%E2%80%9CHow_Safe_Is_Two_Factor_Authentication_Exactly_%E2%80%93_Review_Geek%E2%80%9D\"><\/span>&#8220;How Safe Is Two Factor Authentication Exactly? \u2013 Review Geek&#8221;<span class=\"ez-toc-section-end\"><\/span><\/h1>\n<div id=\"article-content-area\">\n<figure style=\"width: 1920px\" class=\"wp-caption alignnone\"><img loading=\"lazy\" decoding=\"async\" class=\"type:primaryImage wp-image-122280 size-full\" data-pagespeed-no-defer=\"\" src=\"https:\/\/www.reviewgeek.com\/p\/uploads\/2022\/06\/ba14864d.jpg?width=1200\" alt=\"A phone next to a tablet requesting a 2FA code\" width=\"1920\" height=\"1080\" data-crediturl=\"https:\/\/www.shutterstock.com\/image-photo\/two-step-authentication-2step-verification-sms-1670159704\" data-credittext=\"BestForBest\/Shutterstock.com\"\/><figcaption class=\"wp-caption-text\"><span class=\"type:primaryImage imagecredit\"><a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.shutterstock.com\/image-photo\/two-step-authentication-2step-verification-sms-1670159704\">BestForBest\/Shutterstock.com<\/a><\/span><\/figcaption><\/figure>\n<p>Two-factor authentication (2FA) is becoming mandatory on many websites, and it\u2019s easy to see why. On the face of it, requiring you to confirm your login via SMS or an <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/download-scripts-themes-apps\/\" data-internallinksmanager029f6b8e52c=\"9\" title=\"Download Scripts &amp; Themes &amp; Apps\" target=\"_blank\" rel=\"noopener\">app<\/a> provides a solid second layer of security. But just how strong is it?<\/p>\n<p>With security threats on the rise, and people having more than ever to lose online, it\u2019s only natural to want to protect yourself as much as possible. While having a <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/social-mediaa\/\" data-internallinksmanager029f6b8e52c=\"1\" title=\"Social Media\" target=\"_blank\" rel=\"noopener\">social media<\/a> account hacked may be annoying, there are far more serious consequences to having lax cyber security. Hackers could access your bank accounts and drain your savings, sensitive files and pictures could be stolen, and you could even have a work account hacked and land in hot water with your boss.<\/p>\n<p>The term \u201ctwo-factor authentication\u201d refers to a second step to confirm who you are. An additional layer of protection will, by default, provide more security than a single barrier. However, there is more than one method of 2FA; all methods offer different levels of security, and some are more popular than others. So, can 2FA make your sensitive accounts invulnerable to hackers? Or is it just a huge waste of effort? Let\u2019s find out.<\/p>\n<h2 role=\"heading\" aria-level=\"2\"><span class=\"ez-toc-section\" id=\"SMS_is_Not_as_Safe_as_It_Seems\"><\/span><a rel=\"nofollow noopener\" target=\"_blank\" name=\"autotoc_anchor_0\">SMS is Not as Safe as It Seems<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<figure style=\"width: 1920px\" class=\"wp-caption alignnone\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-122281 size-full\" data-pagespeed-lazy-src=\"https:\/\/www.reviewgeek.com\/p\/uploads\/2022\/06\/4e08e011.jpg\" alt=\"A laptiio displaying a 2FA code reset request\" width=\"1920\" height=\"1080\" data-crediturl=\"https:\/\/www.shutterstock.com\/image-photo\/woman-hand-holding-phone-showing-security-2033864456\" data-credittext=\"KT Stock photos\/Shutterstock.com\" src=\"\/pagespeed_static\/1.JiBnMqyl6S.gif\" onload=\"pagespeed.lazyLoadImages.loadIfVisibleAndMaybeBeacon(this);\" onerror=\"this.onerror=null;pagespeed.lazyLoadImages.loadIfVisibleAndMaybeBeacon(this);\"\/><figcaption class=\"wp-caption-text\"><span class=\"imagecredit\"><a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.shutterstock.com\/image-photo\/woman-hand-holding-phone-showing-security-2033864456\">KT Stock photos\/Shutterstock.com<\/a><\/span><\/figcaption><\/figure>\n<p>The most common form of 2FA is SMS based. Your bank, social media account, or email provider sends you a text message with a code, which you enter within a set time period. This gives you access to the account and keeps your login safe from anyone who doesn\u2019t have your phone. On the face of it, this is the most secure method. Someone would need to steal your cellphone or devise some elaborate, James Bond-esque way of cloning your SIM card to get around this one, right? Wrong.<\/p>\n<p>Last year Vice claimed a <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.vice.com\/en\/article\/y3g8wb\/hacker-got-my-texts-16-dollars-sakari-netnumber\">hacker could use a flaw in the SMS system<\/a> to hijack your number and reroute your SMS messages for as little as $16. There are also more and less sophisticated methods an individual can use to access your messages. The simplest involves simply calling your phone company claiming to be you, saying your phone is missing, and asking the company to switch your number to another sim card. More complex ones involve attacking the company directly and intercepting messages.<\/p>\n<p>As for how they get personal details and your phone number? They could do some shady deals and buy personal information on you and your various online activities over the dark web. Or they could check your Facebook for details like your date of birth, phone number, schools you attended, and your mother\u2019s maiden name. You may know precisely what information you put online, but many people don\u2019t.<\/p>\n<p>At the very least, it is possible to <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.howtogeek.com\/668922\/how-to-protect-yourself-from-sim-swapping-attacks\/\">protect yourself from sim-swapping attacks<\/a> or be alerted when they occur. But you should consider adopting a different 2FA method if possible.<\/p>\n<h2 role=\"heading\" aria-level=\"2\"><span class=\"ez-toc-section\" id=\"Email-Based_2FA_Could_Be_Pointless\"><\/span><a rel=\"nofollow noopener\" target=\"_blank\" name=\"autotoc_anchor_1\">Email-Based 2FA Could Be Pointless<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Two-factor authentication should add an extra layer of security between your account and a potential threat. However, if you\u2019re lazy, all you\u2019re doing is adding an extra step and potentially giving an internet miscreant a good laugh. If you\u2019re the sort of person who uses the same password for everything and their email account is being used to secure their target account, you could be in a lot of trouble. A hacker can log into that email address using the same details he\u2019s already stolen and authenticate his actions.<\/p>\n<p>If you insist on using email-based 2FA, you should make a separate email account purely for authentication purposes with its unique and difficult-to-crack password. Alternatively, use another method because they\u2019re all more secure.<\/p>\n<h2 role=\"heading\" aria-level=\"2\"><span class=\"ez-toc-section\" id=\"Push-Based_Could_Let_You_Down\"><\/span><a rel=\"nofollow noopener\" target=\"_blank\" name=\"autotoc_anchor_2\">Push-Based Could Let You Down<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<figure style=\"width: 1920px\" class=\"wp-caption alignnone\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-122284 size-full\" data-pagespeed-lazy-src=\"https:\/\/www.reviewgeek.com\/p\/uploads\/2022\/06\/029f9b7d.jpg\" alt=\"A man logging into a site with 2FA\" width=\"1920\" height=\"1080\" data-crediturl=\"https:\/\/www.shutterstock.com\/image-photo\/cyber-security-twostep-verification-login-user-2146530177\" data-credittext=\"tsingha25\/Shutterstock.com\" src=\"\/pagespeed_static\/1.JiBnMqyl6S.gif\" onload=\"pagespeed.lazyLoadImages.loadIfVisibleAndMaybeBeacon(this);\" onerror=\"this.onerror=null;pagespeed.lazyLoadImages.loadIfVisibleAndMaybeBeacon(this);\"\/><figcaption class=\"wp-caption-text\"><span class=\"imagecredit\"><a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.shutterstock.com\/image-photo\/cyber-security-twostep-verification-login-user-2146530177\">tsingha25\/Shutterstock.com<\/a><\/span><\/figcaption><\/figure>\n<p>Push-based authentication can be quick, easy, and secure. A device, which can be your smartphone, is linked with your account and registered as your 2FA method of choice. From this point on, whenever you want to sign in, you\u2019ll receive a push notification on that device. Unlock your phone, confirm it\u2019s you, and you\u2019re in. Sounds perfect, right?<\/p>\n<p>Unfortunately, there is a catch or two. The main problem with the push-based method is your device needs to be online for you to use it. If you need to access an account and your phone is struggling to get a signal, you\u2019re out of luck. It\u2019s worth pointing out that this hasn\u2019t been an issue for me in the few years I\u2019ve used it. If I need to log in, I\u2019m usually somewhere with WiFi, which my phone can use. I\u2019m more likely to be somewhere where I can\u2019t receive an SMS than somewhere where I\u2019m trying to log in and unable to get a push notification sent to my phone.<\/p>\n<h2 role=\"heading\" aria-level=\"2\"><span class=\"ez-toc-section\" id=\"Hardware-Based_2FA_is_A_Lot_of_Effort\"><\/span>Hardware-Based 2FA is A Lot of Effort<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<figure style=\"width: 1920px\" class=\"wp-caption alignnone\"><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-99631\" data-pagespeed-lazy-src=\"https:\/\/www.reviewgeek.com\/p\/uploads\/2021\/10\/8266e4bf.png\" alt=\"The YubiKey Bio in a Mac and PC.\" width=\"1920\" height=\"1080\" src=\"\/pagespeed_static\/1.JiBnMqyl6S.gif\" onload=\"pagespeed.lazyLoadImages.loadIfVisibleAndMaybeBeacon(this);\" onerror=\"this.onerror=null;pagespeed.lazyLoadImages.loadIfVisibleAndMaybeBeacon(this);\"\/><figcaption class=\"wp-caption-text\"><span class=\"imagecredit\">Yubico<\/span><\/figcaption><\/figure>\n<p><a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.reviewgeek.com\/63448\/what-is-a-usb-security-key-and-should-you-use-one\/\">Physical authentication keys are as close to unhackable as you can get. It\u2019s essentially a USB stick full of security protocols and codes that you plug into a device you\u2019re logging into. You can keep it on your keychain and carry it around with you, or keep it in a safe and only take it out when you need to log into something that needs that extra security layer. The main danger with a physical key is losing or breaking it, which you may have already done with USB sticks in the past.<\/p>\n<p>There is also the option of having a long, complex, authentication password physically written down. This is a string of numbers and characters and a popular method for securing cryptocurrency wallets. As these are difficult to crack,\u00a0<a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.computerworld.com\/article\/2550008\/the-clock-is-ticking-for-encryption.html\">The FBI broke into a house<\/a> to find a piece of paper containing a 27-character password, which was easier than working it out. You can\u2019t hack something written on a piece of paper and stored in a desk drawer, and supercomputers can take years to go through the possible combinations involved in high-level encryption.<\/p>\n<p>Of course, if it\u2019s in your desk drawer, it isn\u2019t with you. If you take it with you, you can lose it as easily as you can lose a 2FA USB. And when it\u2019s gone, you\u2019ll need to go through an account recovery process at best or lose access to your account at worst. The physical method is the best thing you can do in terms of security but the worst in terms of convenience. You can use it as a rock-solid account recovery method, but it\u2019s probably best avoided for things you access on the fly.<\/p>\n<h2 role=\"heading\" aria-level=\"2\"><span class=\"ez-toc-section\" id=\"App-Based_2FA_is_Worth_the_Hassle\"><\/span><a rel=\"nofollow noopener\" target=\"_blank\" name=\"autotoc_anchor_4\">App-Based 2FA is Worth the Hassle<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Downloading an app like <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/play.google.com\/store\/apps\/details?id=com.google.android.apps.authenticator2&amp;hl=en_US&amp;gl=US\">Google Authenticator<\/a> comes with a few benefits. It is more secure than methods like email and SMS authentication; it\u2019s free in most cases and still functions if the device hasn\u2019t got an internet connection. This is because of the timing-based algorithm, which produces different keys at different moments in time. A key is only valid for a set period and should match the device and the site the user is logging into.<\/p>\n<p>There are still some vulnerabilities. With Google Authenticator, there is no lock on the app itself, so anyone who can access your phone can open and use it. Some malware programs could also take advantage of the lack of an access key, so you should consider alternatives like the <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/click.linksynergy.com\/deeplink?id=2QzUaswX1as&amp;mid=24542&amp;u1=rg\/121722&amp;murl=https%3A%2F%2Fwww.microsoft.com%2Fen-us%2Fsecurity%2Fmobile-authenticator-app\">Microsoft Authenticator app<\/a>, which adds an extra layer of security to the authentication process with features like biometric unlock. It is also vulnerable to phishing attacks, where you\u2019ll enter the key into a fake website and allow a fast-acting hacker or robot to use it. They are also <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.businesswire.com\/news\/home\/20211008005015\/en\/Most-Mobile-Authenticator-Apps-Have-a-Design-Flaw-That-Can-Be-Hacked\">open to interception<\/a>.<\/p>\n<h2 role=\"heading\" aria-level=\"2\"><span class=\"ez-toc-section\" id=\"You_Should_Still_Use_2FA\"><\/span>You Should Still Use 2FA<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>(I know this is cheesy, and images aren\u2019t my strong point, but this doesn\u2019t feel right without keeping up the \u201call hackers wear hoodies in dark rooms\u201d trope.)<\/p>\n<p>I have identified flaws with every method mentioned, and more will probably emerge as time goes on. But the more security you have, the better. You should 100% use 2FA and other methods like <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.reviewgeek.com\/37116\/the-best-password-managers\/\">a password manager\u00a0to secure your online accounts.<\/p>\n<p>There is a balance between security and convenience, so find what works for you. Maybe the hardware-based method is overkill or something you\u2019re guaranteed to lose. SMS may not be as secure as it seems, but a bit of effort is still required to crack it. If you\u2019re just an average Joe, you\u2019re probably not going to be worth individually targeting, and SMS authentication is something that will massively increase your online security.<\/p>\n<p>Look at your life, assess what you have to lose, and work out how much effort you want to put in. But pick at least one 2FA method (that isn\u2019t email-based) and make sure you have a different password for every account you care about.\n<\/p><\/div>\n<p><script>\nsetTimeout(function(){\n  !function(f,b,e,v,n,t,s)\n  {if(f.fbq)return;n=f.fbq=function(){n.callMethod?\n  n.callMethod.apply(n,arguments):n.queue.push(arguments)};\n  if(!f._fbq)f._fbq=n;n.push=n;n.loaded=!0;n.version='2.0';\n  n.queue=[];t=b.createElement(e);t.async=!0;\n  t.src=v;s=b.getElementsByTagName(e)[0];\n  s.parentNode.insertBefore(t,s)}(window, document,'script',\n  'https:\/\/connect.facebook.net\/en_US\/fbevents.js');\n  fbq('init', '1137093656460433');\n  fbq('track', 'PageView');\n  },3000);\n<\/script><\/p>\n<blockquote><p><strong><span style=\"color: #ff6600;\">If you liked the article, do not forget to share it with your friends. Follow us on\u00a0<span style=\"color: #ff0000;\"><a style=\"color: #ff0000;\" href=\"https:\/\/news.google.com\/publications\/CAAqBwgKMLG0nwswvr63Aw\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">Google News<\/a><\/span>\u00a0too, click on the star and choose us from your favorites.<\/span><\/strong><\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\">For forums sites go to <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/forum.buradabiliyorum.com\/\" target=\"_blank\" rel=\"noopener\">Forum.BuradaBiliyorum.Com<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\"><strong>If you want to read more like this article, you can visit our <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/en.buradabiliyorum.com\/technology\/\" target=\"_blank\" rel=\"noopener\">Technology category.<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<p><span style=\"color: black;\"><a style=\"color: #ff9900;\" href=\"https:\/\/www.reviewgeek.com\/121722\/how-safe-is-two-factor-authentication-exactly\/\" target=\"_blank\" rel=\"noopener\">Source<\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8220;How Safe Is Two Factor Authentication Exactly? \u2013 Review Geek&#8221; BestForBest\/Shutterstock.com Two-factor authentication (2FA) is becoming mandatory on many websites, and it\u2019s easy to see why. On the face of it, requiring you to confirm your login via SMS or an app provides a solid second layer of security. But just how strong is it?&#8230;<\/p>\n","protected":false},"author":1,"featured_media":472276,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.reviewgeek.com\/p\/uploads\/2022\/06\/ba14864d.jpg","fifu_image_alt":"","footnotes":""},"categories":[18],"tags":[],"class_list":["post-472275","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technology"],"_links":{"self":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/472275","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/comments?post=472275"}],"version-history":[{"count":0,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/472275\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media\/472276"}],"wp:attachment":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media?parent=472275"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/categories?post=472275"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/tags?post=472275"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}