• smeg@feddit.uk
    link
    fedilink
    English
    arrow-up
    3
    ·
    1 year ago

    Seriously, while 2FA via SMS is generally much better than nothing, it has zero security so might even make things worse in some cases by providing a false sense of security!

        • LoafyLemon@kbin.social
          link
          fedilink
          arrow-up
          2
          arrow-down
          1
          ·
          1 year ago

          RCS is a replacement for SMS, used by the majority of mobile carriers in Europe, Northern America, and Asia. It is used by default in all supported regions.

          • smeg@feddit.uk
            link
            fedilink
            English
            arrow-up
            2
            ·
            1 year ago

            I know what it is, but it’s got nothing to do with this discussion. What company provides 2FA codes via RCS instead of SMS?

              • smeg@feddit.uk
                link
                fedilink
                English
                arrow-up
                5
                ·
                1 year ago

                Do they? I’ve never seen this as an option. In fact, I’ve never even seen RCS mentioned anywhere outside Android enthusiast forums!

                • LoafyLemon@kbin.social
                  link
                  fedilink
                  arrow-up
                  1
                  ·
                  edit-2
                  1 year ago

                  It’s not surprising if you haven’t come across the rollout of RCS. Google developed this feature as a replacement for the less secure SMS standards and aimed for a seamless implementation without causing user disruptions. This could be a rare instance where we commend Google for a change that benefits users, not just their bottom line.

                  • smeg@feddit.uk
                    link
                    fedilink
                    English
                    arrow-up
                    2
                    ·
                    1 year ago

                    Except there’s still very little support for it as they haven’t opened up the protocol for people to actually write clients to use it