Y
Hacker News
new
|
ask
|
show
|
jobs
by
frei
2152 days ago
All the arguments in the post against SMS 2FA are also arguments against TOTP
1 comments
jandrese
2152 days ago
There is no help desk that can give away your TOTP secret. That’s the big weakness with SMS, someone buys a phone and asks the clerk to give them your phone number.
link
UncleMeat
2152 days ago
It is a publicized weakness. In practice, phishing is scalable and social engineering isn’t. And humans are shit at detecting phishing attacks.
link