Conversation

Notices

Embed this notice
Yohan Yukiya Seseㆍ사요한・謝雪矢 (youronlyone@c.im)'s status on Tuesday, 04-Jun-2024 22:20:32 JST Yohan Yukiya Seseㆍ사요한・謝雪矢

I'll never understand why #banks in the #Philippines, as well as #FinTech (*cough*tech*cough*) companies, love to use the weakest(!!) and most expensive(!) #TwoFactorAuthentication: #SMS / Text.
It's mid-2024 already. /facepalm
#Privacy #Security #2FA
In conversation about 6 months ago from c.im permalink
Attachments
1. No result found on File_thumbnail lookup.
  
  text.it
  
  This domain may be for sale!
- Embed this notice
  Yohan Yukiya Seseㆍ사요한・謝雪矢 (youronlyone@c.im)'s status on Tuesday, 04-Jun-2024 22:48:45 JST Yohan Yukiya Seseㆍ사요한・謝雪矢
  in reply to
  - Airikr :sweden: :endeavourOS:
  @edgren Yep!
  It's also super annoying because every request you make, you need an SMS 2FA token. And somewhere, it will get delayed for 5 minutes if they're sending to the same number too fast.
  Just earlier, I had to wait 5 minutes to send a new token. Then when it arrived, it sent the first one and the new one, with the same “received” timestamp, so I have to guess which one is correct.
  If you get it wrong, you have to start all over again. (Luckily, this time, I guessed correctly.)
  
  In conversation about 6 months ago permalink
- Embed this notice
  Airikr :sweden: :endeavourOS: (edgren@mst.airikr.me)'s status on Tuesday, 04-Jun-2024 22:48:50 JST Airikr :sweden: :endeavourOS:
  in reply to
  
  @youronlyone That's crazy 😨
  
  In conversation about 6 months ago permalink
- Embed this notice
  Yohan Yukiya Seseㆍ사요한・謝雪矢 (youronlyone@c.im)'s status on Tuesday, 04-Jun-2024 22:56:50 JST Yohan Yukiya Seseㆍ사요한・謝雪矢
  in reply to
  - Filbert
  @filburutto
  In Japan? O_O
  What's with banks and fintech. LOL.
  The other 2FA methods are cheaper and more secure. Why are they sticking to SMS.
  Back in 2016 or 2017, here in the Philippines, a few people went public that despite having SMS 2FA, their mobile bank accounts were still compromised. When the banks checked, those were “legitimate” transactions because the 2FA were successful.
  Then the narrative was changed to blaming the customer. They also explained that SMS-based 2FA is secure, and what happened to the victims was what's called “social engineering”.
  And just like that, it ended, and forgotten. *shrugs*
  
  In conversation about 6 months ago permalink
- Embed this notice
  Filbert (filburutto@sakurajima.social)'s status on Tuesday, 04-Jun-2024 22:56:52 JST Filbert
  in reply to
  
  @youronlyone@c.im It's the same here.
  
  In conversation about 6 months ago permalink
- Embed this notice
  Yohan Yukiya Seseㆍ사요한・謝雪矢 (youronlyone@c.im)'s status on Friday, 07-Jun-2024 11:27:25 JST Yohan Yukiya Seseㆍ사요한・謝雪矢
  in reply to
  - Filbert
  @filburutto Ahh! I thought you were from Japan. ^^;;
  LOL. Why is it our two countries have too many parallels? It's as if we've shared land borders for millennia.
  
  In conversation about 6 months ago permalink
- Embed this notice
  Filbert (filburutto@sakurajima.social)'s status on Friday, 07-Jun-2024 11:27:27 JST Filbert
  in reply to
  
  @youronlyone@c.im No, I'm from Indonesia. Using SMS as 2FA is a norm here.
  
  In conversation about 6 months ago permalink

Public

Notices

Feeds