top | item 23989805 (no title) frei | 5 years ago All the arguments in the post against SMS 2FA are also arguments against TOTP discuss order hn newest jandrese|5 years ago There is no help desk that can give away your TOTP secret. That’s the big weakness with SMS, someone buys a phone and asks the clerk to give them your phone number. UncleMeat|5 years ago It is a publicized weakness. In practice, phishing is scalable and social engineering isn’t. And humans are shit at detecting phishing attacks.
jandrese|5 years ago There is no help desk that can give away your TOTP secret. That’s the big weakness with SMS, someone buys a phone and asks the clerk to give them your phone number. UncleMeat|5 years ago It is a publicized weakness. In practice, phishing is scalable and social engineering isn’t. And humans are shit at detecting phishing attacks.
UncleMeat|5 years ago It is a publicized weakness. In practice, phishing is scalable and social engineering isn’t. And humans are shit at detecting phishing attacks.
jandrese|5 years ago
UncleMeat|5 years ago