Here's how "SMS Intercept" works in practice. *Anyone* walks into *any* retail cellular store in the world, tells an employee to move *your* number to a new SIM. The employee *verifies* that person. Your SMSs now go to a new phone. That's just one way.
I understand, and I'm saying people incorrectly believe that SMS 2FA makes them immune from attacks like phishing and password reuse attacks, like in this case. Do you agree that's a bad thing?
-
-
The problem is I can clearly see the negative effects of SMS 2FA, I'm not clear on the positives. I've heard the argument that attacker must rewrite their tools to handle SMS 2FA users, and that inconvenience is the positive. I have a response for that, if you're interested
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.