[Ajedi32]

For the purposes of 2FA implementations it doesn't matter why SMS is insecure, only that it is insecure. Since it's probably not within your power to force your telco to change their insecure business practices, avoiding relying on them for 2FA is your only alternative.

[anarchodev]

Exactly this. Also want to add that phone numbers were never really meant to function as identity providers. For this reason I think it's important not to use the real number on your cell phone for anything -- VOIP numbers are best if the only method of 2FA offered is phone number.