alyth@lemmy.world to Mildly Infuriating@lemmy.worldEnglish · 8 months agoMFAlemmy.worldimagemessage-square2fedilinkarrow-up10arrow-down10
arrow-up10arrow-down1imageMFAlemmy.worldalyth@lemmy.world to Mildly Infuriating@lemmy.worldEnglish · 8 months agomessage-square2fedilink
minus-squarecooopsspace@infosec.publinkfedilinkEnglisharrow-up2·edit-28 months agoSMS: Here is your 30s “MFA” code, I’ll send it to you 40 minutes after you need it. SMS isn’t 2FA. Its 1.5FA.
minus-squareKairuByte@lemmy.dbzer0.comlinkfedilinkEnglisharrow-up1·8 months agoSMS isn’t even secure. Mitm, social engineering, straight up theft, and more are all ways around it. It should never have been implemented, but especially not when totp exists.
SMS: Here is your 30s “MFA” code, I’ll send it to you 40 minutes after you need it.
SMS isn’t 2FA. Its 1.5FA.
SMS isn’t even secure. Mitm, social engineering, straight up theft, and more are all ways around it. It should never have been implemented, but especially not when totp exists.