Abusing a security technology like 2FA by turning it into a marketing opportunity is pretty much the most short-term clever, long-term foolish thing Facebook could do.https://twitter.com/gabriel__lewis/status/963121814166630400 …
You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more
The worst part is that FB’s spam SMS *look* exactly like real 2FA login attempts when your phone screen is locked. So when one arrives (every evening between 8-10pm) you *have* to check it.pic.twitter.com/rVGvHmsffF
This in turn drives decision fatigue for users, which can harm security across all of the accounts they use. “Oh, just more FB spam, I’ll ignore that.”
I think callout culture is bullshit, I demand a recount!
why sms 2FA anyways? that is SO not secure and that should already be known
That's one reason why I'm really not comfortable with SMS 2FA and really prefer hw-based or app-based ones.
I fear if Facebook provided a 2FA app it would not just do 2FA but also feed them personal info about users they would monetize.
Hell hath no fury like a Facebook scorned.
That's just one of the reasons why I would never ever give my phone number to Facebook. Luckily, you can have 2fa without it.
The only reason FB has my mobile number is for 2FA. This hasn't happened to me yet, but thanks for the heads-up. Also recommend putting FB account on a dedicated email address.
Facebook had SMS-based posting before they had 2FA, so the decision wasn’t necessarily made in that order!
When people enter their number specifically because they want 2FA you can’t just say “yeah but we already had SMS posting so it’s ok if we spam that number.”
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.