Hacker News new | ask | show | jobs
by speckx 404 days ago
I was surprised that Bank of America still does SMS based 2FA.
1 comments
dmoy 404 days ago
BoA is one of the very few US banks that do any modern auth - they support fido2 security keys.

Of course effectively 0% of their customers actually use it, and instead rely on sms

link
kccqzy 404 days ago
Huh I set up SMS 2FA for BofA back in 2016 and I never knew they now support fido2.
link
dmoy 403 days ago
They don't let you get rid of sms fallback, so it's not immune to sim theft

It does help vs phishing though

link