ThroneThrone
May 10

Get Rid of SMS 2FA and Switch to Passkeys

Why are we still using SMS for 2FA? SMS 2FA is NOT secure, and should be using Two-Factor Authentication OR MFA Apps and Passkeys instead! I can't believe you would not be using higher security standards for logins. The new web standard is and has been for the last few years has been 2FA/MFA and in more recent times Passkeys for logins. We should not ever be using SMS for 2FA codes period, they're easily hacked with SMS Spoofing attacks.
PendingPending
May 29, 2025

Keep up voting and keep this at the top, because this should be top priority.

May 13, 2025

I prefer TOTP (authentication app) since it's password manager friendly. I agree SMS is awful.

May 14, 2025

Johnny Stokino Most or rather all 2FA/MFA apps these days are all time-based One-Time use Codes. However Passkeys are much more secure, since you're using a Password Manager that supports the use of and stores Passkeys or you're using a Hardware based Passkey device like Yubikey that you plug into your computer or mobile device for authentication.