| ▲ | chimeracoder 9 days ago | |
> With passwords, no account was even lost in the scenario for a recovery flow to start Given how common mandatory SMS 2FA is for banks, if thieves stole your unlocked phone, they have stolen your account too. | ||
| ▲ | 3036e4 9 days ago | parent [-] | |
Isn't the SMS just 1 factor, and for 2FA they will also need the other F (e.g. password)? Relying on only SMS sounds like 1FA? | ||