@SwiftOnSecurity So fun being the one who was telling folks this *from day one*, that "SMS 2FA" is always really SMS 1FA and *worse* than just having a password, who was constantly "corrected" by infosec professionals who insisted I was wrong and letting perfect be the enemy of good... 🤔