Okay so this doesn't have to do with VR but it has to do with its members. I just read this online this morning.
Warning: Hackers could take over your email account by stealing cookies, even if you have MFA
From the article it is basically saying that a hacker can steal your stuff even if you have multi-factor authentication enabled. They say that they are doing it using the little remember me checkbox that is on many sites that people visit and collecting the cookies from that. Their recommendation is to ensure that you don't have that box checked on any of the sites you visit.
Just thought I would let everyone know.
Figured I'd share with the rest I don't want anyone getting hacked
Another thing people might want to do is whenever they are done on their browser make sure to clear your cookies and browser cache.
Chrome
Click on three little dots in top right corner. From the drop down menu click on Delete Browsing Data. Change the time from last 15 minutes to all time and click on delete data button. This will clear out all of your browser history, cache, and cookies from Google Chrome. Just make sure in the Settings in the same 3 dot tab at the bottom under privacy and security you have selected the first three check boxes.
Firefox
Sort of the same click on the three little dots at the bottom right corner. Scroll all the way down to the bottom where it says Settings and click it. Then scroll down to Delete Browsing Data, click that and make sure the first four check boxes are checked. Then click the delete browsing data button.
I should know these are for Android but the same premise should apply regardless of whether you use this, iOS mobile, or your desktop.
You probably gave you're password to a close friend they can't hack even with authenticator on