FélixJun 6
I open the website. My phone autofills my username. My phone autofills my password.
The website asks for a OTP code. My phone autofills the OTP code.
The website asks to send me a text message. My phone receives the text message and autofills the code.
Show threadNetzblockierer

@fay59 JFC, already any OTP code is bad, unless it has a "legitimate reason", like PCI-DSS & PSD2 - compliance…

  • But beyond that? Nope!

#OTP #SMS #2FA #3FA #4FA #PCIDSS #PSD2 #Enshittification

Jun 6 at 1:26pmWeb