When are we getting the option to use an authenticator app or a physical security key for the MFA?
The SMS option are still the least secure way of MFA out there.
- SMS are not encrypted
- SMS codes are vulnerable to phishing
- You are in need of a phone service, which can down or out of reach.
- SMS will most likely not get any more secure .
I see peoples have been asking this question a while now, but not much have been done as far as I can see/ find info about.
So for a company who are in the security business it dont give a very good commercial value I think.
Please get some of your tech guys on this and come up with a safer solution.