|
|
|
|
|
|
by autoexec
1207 days ago
|
|
|
> To be able to receive SMS, the network must know your location. You are also forced to use proprietary firmware for most radio components. These are risks you have just by owning a cell phone, having an authenticator app doesn't change that. > SMS is also subject to attacks against the telecom, such as by tricking their staff into producing a new sim card with your number. This is absolutely a legitimate concern, and the lack of security in carrier practices in particular honestly makes me want to avoid 2FA entirely. Fortunately, I've never needed it for account recovery. I use a password manager so all accounts get unique logins and I'm savvy enough not to fall for your typical phishing scams which helps. There's no guarantees my luck will hold out though so I'll be looking into privacy preserving options for the most critical things or for cases where I'm not left with any choice. |
|
|