Every time I log into a server or push code to GitHub, a small USB key on my laptop flashes. I have to touch it to continue. That extra tap blocks a class of attacks that’s far more common now than twenty years ago: malware stealing or abusing your SSH keys.
