T
9

Unpopular opinion: Two-factor authentication through SMS is worse than no 2FA at all

I tried using SMS codes for 2FA on my email account for about 6 months. Then I got a SIM swap attack and someone took over my phone number. They reset my password using those codes and I lost access to three accounts. Now I think app-based authenticators or hardware keys are the only real option. Has anyone else dealt with a SIM swap or do you still trust SMS codes?
2 comments

Log in to join the discussion

Log In
2 Comments
loganm52
loganm5211d ago
Wait, someone actually TOOK over your phone number and used it to break into your accounts? That's absolutely insane, I thought SIM swapping was something that only happened to celebrities or crypto people. I've been using SMS codes for years and never even considered how easy it would be for someone to just transfer my number to their phone. That honestly makes me want to switch to an authenticator app TODAY before I get hit too.
7
jana_lewis16
Authenticator app is a lifesaver. I switched after my buddy got hit and never looked back. Way less stressful than SMS codes.
7