Need to yell this as loud as possible to the goddamn banking and healthcare indu... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		tmchu on Aug 3, 2023 \| parent \| context \| favorite \| on: SMS traffic pumping fraud Need to yell this as loud as possible to the goddamn banking and healthcare industry face then. Cause those dinosaurs don't even let you have an online account without an SMS (and only SMS in most case) as a 2FA mechanism. Just to shame a few out there right now: Chase, Fidelity, Bank of America, American Express, United Healthcare, Signa and many more.

_t4za on Aug 3, 2023 [–]

Ally Bank used to allow 2FA through SMS or email, if I recall both were optional. But they eventually required everyone to use 2FA, and it had to be SMS -- email 2FA doesn't work anymore

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact