Microsoft’s security chief Alex Weinert calls on consumers blogpost to stop using two-step verification via SMS. He writes that it is safer to use an authentication app.
Weinert is Director of Identity Security at Microsoft and regularly writes about security issues. He has previously spoken out against the use of passwords.
According to Weinert, two-step verification via SMS is not secure, because telephone networks are not suitable for this. The connection is not encrypted and in theory it is therefore possible to intercept and read messages.
In addition, it sometimes happens that hackers take over a SIM card (SIM swapping). This means that a phone number can be taken over completely and can therefore also be logged in to accounts with two-step verification via SMS.
Instead of two-step verification via SMS, people should use a separate verification app, according to Weinert, because it is encrypted. If your SIM card is then taken over, hackers will not be able to log in to accounts that have two-step verification via SMS enabled.
– .
/i/1288947414.png?resize=150%2C150&ssl=1)
