Whistleblower warning: 2FA codes sent via SMS are trivially easy to intercept

Many implementations of two-factor authentication involve sending a one-time passcode to the end user via SMS. Once entered, the user is logged in and it’s business as usual. The problem is the inherent weakness of SMS, and the fact that you really have no idea who else laid eyes on…

Read Entire Article