Quote:
Originally Posted by nudge
All this headache is part of a move to a new security setup which sounds like it's based very much on 2FA using SMS to your mobile phone. There's an elephant in that room that I've not seen anyone here mention, the SMS system is part of the telephone network. Any IT security specialist should know that this is not secure. I'm on holiday and don't have the details with me but there are well known flaws in the SMS system that can be exploited to intercept and redirect SMS messages to another phone. It may be unlikely but you cannot be 100% safe using SMS as a second authentication factor.
|
You seem to be most concerned about the SMS option - there are other alternatives available, it's all detailed in the Fastmail blog.