2FA Security Debate

Discussions focus on the importance, effectiveness, and limitations of two-factor authentication (2FA) in preventing account takeovers, including debates over phone-based vs. app-based methods and surprise at its absence in security incidents.

📉 Falling 0.3x Security

7,249

Comments

Years Active

Top Authors

#5030

Topic ID

Activity Over Time

2008

2009

2010

2011

2012

274

2013

290

2014

252

2015

197

2016

406

2017

464

2018

423

2019

532

2020

555

2021

696

2022

1,142

2023

801

2024

610

2025

455

2026

Top Contributors

Wowfunhappy (23) rsync (17) stephenr (16) latchkey (16) 1cvmask (15)

Keywords

e.g AWS GPG gbraad.nl GV gauth.apps QA MFA 2fa authenticator phone factor authentication app password phone number login phone app

Sample Comments

dorsatum • Sep 17, 2019 • View on HN

same, issues with 2FA and not considered at all

hocuspocus • Mar 9, 2023 • View on HN

Don't use your phone as a 2FA then?

mikeucb • Feb 27, 2015 • View on HN

Very surprised 2FA was not enabled... Super sucky.

RobIII • Nov 17, 2020 • View on HN

Do you have / did you have 2FA enabled? And, if not, why not?

encryptluks2 • Feb 10, 2022 • View on HN

Phone numbers aren't 2FA and are susceptible for this reason.

zobzu • Feb 12, 2017 • View on HN

you don't lose your 2fa. thats it. all other options are unsafe

bdcravens • Mar 13, 2021 • View on HN

Doesn't this eliminate the advantage of 2FA?

realraghavgupta • Sep 22, 2016 • View on HN

using 2 Factor Authentication comes handy in situations like this.

JohnFen • Jul 14, 2023 • View on HN

Some services require 2FA/MFA whether you personally want it or not.

timmywil • Feb 10, 2023 • View on HN

Could use an app for 2fa tho right?