So, why do almost all banks, in the U.S. at least, only support the worst 2FA authentication method exclusively? And, this article doesn’t mention SIM-swap attacks, which are unavoidable. It can’t be that difficult to support an authenticator app.

https://gizmodo.com/feds-warn-sms-authentication-is-unsafe-after-worst-hack-in-our-nations-history-2000541129

#Cybersecurity

You are viewing a single thread.
View all comments
23 points

I’ve filed about 7 complaints to the Ombudsman where I live for my bank. I refuse to use sms for verification. I blame the bank for limiting my access to my accounts as a result. I’ve spoken to hundreds of employees, for hours and hours, wasted in branch time for hours, spoken with managers, escalated numerous tickets.

I’ve probably wasted more of their time and money, then it would have been for them to just implement 2fa from an app rather than sms…

I’ve proven to them how insecure it is. Employees and managers tell me I’m paranoid for nothing.

I’m so sick of this fight with them. Literally have no idea what else to do other then constantly complain, open tickets hourly and literally waste their time, ruin their metrics and annoy the hell out of anyone that works at the bank. I won’t use sms for 2fa.

permalink
report
reply
3 points

You are my hero.

permalink
report
parent
reply
2 points

Literally got a call today from the ombudsman and had to explain it to them. It was like talking to politicians about the internet.

I’m hoping they can at least implement something better then sms.

permalink
report
parent
reply

Cybersecurity

!cybersecurity@fedia.io

Create post

An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!

Rules

Community Rules

  • Be kind
  • Limit promotional activities
  • Non-cybersecurity posts should be redirected to other communities within infosec.pub.

Community stats

  • 689

    Monthly active users

  • 35

    Posts

  • 115

    Comments