You are viewing a single thread.
View all comments View context
4 points

Theoretically anyone at the right point can read all your SMS texts.

A great example being the police “stingray tower” system that masquerades as a cell tower that your phone will happily (and quietly) connect to.

Convince a phone that you’re just another authorized relay, have a target in mind, and it’s like reading postcards before they hit the mailbox.

This is also why it’s an absolute joke for 2FA, but institutions like banks still happily use it because it’s easy to understand.

permalink
report
parent
reply
3 points

Not only easy to understand but for a while it was the only way to do 2fa that was usable by lots of people. Smartphones aren’t as ubiquitous as people think, even today.

SMS’s fall from grace wasn’t actually that it could be intercepted, it was the fact it started being used as an excuse to ask for a phone number and use that to track people.

Google still won’t allow you to use any form of 2fa if you don’t give them a phone number. Twitch/Amazon too. Facebook used to (until they got Whatsapp, now they don’t need to ask.) LinkedIn used to (until they got broken into so many times it became a humongous liability).

permalink
report
parent
reply

Technology

!technology@lemmy.world

Create post

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


Community stats

  • 18K

    Monthly active users

  • 12K

    Posts

  • 553K

    Comments