2FA/MFA: Risks & Usability

Why SMS-based MFA is Still A Good Option for Most People

A lot of attention has been focused on the problems with receiving MFA* codes via text messages (SMS). In short, these codes can be intercepted, enabling hackers to get into your account. Because of this, many in the security industry are recommending that people stop receiving these codes via SMS and use authenticator apps or physical keys (e.g., YubiKey).

While abandoning SMS is the more technically secure option, it’s not usually a user-friendly option for the…