Hey just a gentile tip: ⚠️ ❌ DO NOT USE SMS 2FA ❌...

All posts oshy's posts Post Back to profile

oshy

Hey just a gentile tip: ⚠️

❌ DO NOT USE SMS 2FA ❌

Lots of sites still erroneously describe SMS 2FA as "Secure"

It's not! ❌📱

All someone has to do is know your phone number and call the company asking for a new sim 😱

And they have all your accounts 😨

Like 10 Feb 2023 at 9:45 | Open on raru.re

9 comments

MaRina 🌻

@ocean that's a reason I'm happy you can't do it here

10 Feb 2023 at 9:48 | Open on raru.re

oshy

@kogomi Yeah, literally not having 2FA is safer than SMS 2FA

10 Feb 2023 at 9:49 | Open on raru.re

MaRina 🌻

@ocean I mean in Spain, you can't get a sim like that

10 Feb 2023 at 9:49 | Open on raru.re

oshy

@kogomi Oooh thats good!!! ✅

10 Feb 2023 at 9:51 | Open on raru.re

MaRina 🌻

@ocean being tied to you national id must have a upside i guess...

10 Feb 2023 at 9:52 | Open on raru.re

oshy

@kogomi That sounds mildly scary..

10 Feb 2023 at 9:53 | Open on raru.re

@ocean how so?

10 Feb 2023 at 10:10 | Open on raru.re

Steffo 🐲

@ocean oh god yes. Still don't like it that PayPal uses sms in favour of a security key. Like, for real! I had once added my security keys (only then I saw that you can only add one...).

1. Optionally login with Security Key
2. Login with SMS (because more secure, blahblah)
3. Do shit

Same with TOTP btw. I hate PayPal!

10 Feb 2023 at 9:56 | Open on fellies.social

@ocean provided they know your passwords. unless it's using passwordless login, but in that case, it isn't really a second factor.

10 Feb 2023 at 10:08 | Open on raru.re

Go Up