How about laws that prohibit businesses from selling our personal data? Why does every scammer out there has our phone numbers?

Stop warning USERS. Warn the telecom and device makers to STOP using unencrypted methods.

Me and my closest friends only use Carrier Pigeons to communicate. I recommend everyone else do it too!

The banks are almost all requiring us to use standard SMS text messages for 2-factor authentication. Tell them to update their systems, because the customer has no choice.

All of the federal websites require two factor authentication

The journalists seem to be confusing three things: 1) Using SMS messages for second factor authentication 2) Using SMS messages for messaging 3) Phishing scams

This isnt something the public can control idiots. Make companies do it.

Tell this to our banks that still insist on using SMS text messages for multi factor authentication

Weren't we told NOT to use WhatsApp about 4 years ago because of hacking?

lets get rid of cell phones and the inter-webs and the like and go back to a simpler time where our kids played outside until the street lights came on

Next, the FBI be like, “Ooops, the. authentication apps we told you to use has a security flaw that compromised your accounts. Sorry, our bad” 🙄

Forced into two factor authentication and now they tell us this. Crazy town. Upside down going on here.

How is it MY responsibility to make sure my bank info is safe?!! Geez. The banks should already be on this -- well ahead of what hackers know about THEIR accounts and the security of their holdings! I can't help the banks.

Computers and tech,ruined life

Technology has become a bigger problem than help.

I told several companies I didn't want the two-factor authentication at all. Many of them had no other way to have me log on. I don't care if it's email or text.. It's vulnerable and time consuming as well as a pain in the arse.

Please redo this story. You guys have FAILED at explaining the issue! The reporter was all over the place.

The problem with this story is that they just quote the FBI like that's a good source. How about you do some journalism, do some research, and stop using the FBI as a primary source?

it doesn't matter what security protocol is implemented, people will continue to find a way around it.

Now they want our fingerprints and eyes face image? As users we can be as careful as we can, but the company's backdoors are wide open. There should be laws to force companies to secure the data and pay us, the victims, when it happens. There needs to be a law that limits the amount of time a company can hold on to our data if we aren't a customer of them. There needs to be laws governing this. It's ridiculous.

Give all your passcodes to a third party app? Umm no thanks.

My bank uses and only uses SMS 2FA. They are the ones that need to change.

If something can be built, it can be broken. Nothing is safe.

I remember reading an article that although What's App is encrypted, the federal government can still access your texts. So if the feds can, who else can?

As a veteran, try logging into my health vet and see how many times you get redirected and how many codes they have to send you to get in

They want us to use fingerprint and face recognition for passwords. Then they have everything

If these companies get hacked and cause our data to be exposed because they don’t have proper security, then they need to be held liable for damages.

The two step authentication codes expire almost instantly. 🤷‍♀️ I'm not sure how they would be utilized effectively to steal from you. This sounds like a fear mongering excuse to sell us more apps and security software.

Business and government: require you to use smart phones and texting even for basic services Also business and government: its unsafe to use your smartphone and texting. Please download more apps

So, the title says avoid two-factor text authentication, but the video actually warns against links in texts? Nice job being accurate, folks.

That's rich! The federal government makes you use 2-factor authentication to get in to your TSP account and to your SSA Account.

Stop warning users, just stop using SMS as a second factor. Tell the banks and the financial regulators to pull their thumbs out of their collective asses and get with the times.

The reporters are confused lol. Two factor authenticatjon is security. Those codes expire and can be used only once. Lol. Physhing is not the same as two factor setting. Just dont click on links both in your text msgs and email.

What are we supposed to do when our bank doesn't even have authenticator app support?

Sorry fbi. You guys are the ones we need to watch out for.

Codes are timebombed, single use items. I don't see the problem.🤷‍♂️

Anyone else noticed the subtle push for biometrics that's going on..? Not looking forward to being robbed for my eyeball and finger, cash is less painful to give up.

No real thought in this segment. What you need is a security key like a Yubikey.

Biggest cybersecurity breach so far, but it seems like there's always a bigger one just around the corner and then another and another.

If you use what’s app and you back your phone up to the cloud the FEDS will have access to everything you do! Any apps that back up to the cloud are accessible by the government.

This month alone has really strained my willingness to continue participating in this broken society.

Maybe the government and law enforcement agencies should hold all those who are CEOs of all social media platforms accountable for allowing this to happen to us USA citizens and stop violating our privacy constitutional rights and do something about it for real

We gonna talk about how Meta allows scammers to advertise on their app?

This sounds suspicious right after the Luigi Mangione case it sounds so they can get into your account without a warrant to me. Why is it the FBI and not the NSA or an actual branch of the government that deals with computer security? Also, something they didn’t touch on people who use iPhones and some android androids to have this the messages are encrypted.

👮‍♂️: Don’t do this. 💁🏻‍♂️: Oookkkaayy. Why not? 👮‍♂️: 🤐

I just refuse online banking. Simple.

With an authenticator app, nothing is sent anywhere. Your device's app and the service you're logging in to calculate a code using cryptography that has to match. They change every 30s or so. The FBI are just saying to not use SMS for authentication codes because they can be intercepted, and some services online let you choose between SMS and authenticator apps. They're saying to make the switch away from SMS. Some corporations, like some banks, don't give you the option to switch under your security settings and only send codes via SMS, "for your convenience". Consider banking somewhere else.

Aren't them codes only good for like 10 mins

If business wants my personal information, it’s up to them to keep it safe. If a billion dollar company can’t keep it safe, what’s a citizen supposed to do ? Nothing I do is going to increase the company’s security.

Yes, it makes it harder for the CIA/FBI to access your data with it turned on so please turn them all off so they can access it easier. They need instant access to your data not forced to use work-arounds to get access.

Most users can’t opt out from 2FA

Keep 2FA on and be vigilant about any strange texts you get is your best defense

When we’re being told by our government to use an encrypted app, it makes you wonder if it’s really encrypted. Why would the government that loves to obtain people’s personal information? Encourage us to use an encrypted app?

I’m so done! I can’t even keep up with all the tech BS! All companies still use text messages for authentication, but it’s our responsibility to figure out how to get around it? this is ridiculous

So the news reporter says don't use two-factor authentication. But then when they talk to the professional the first thing he says is the biggest problem isn't two-factor authentication. It's people who don't text often but click phishing links 🤦🏿‍♂️🤦🏿‍♂️

It all depends on the website-if they only offer text messages 2fa, what can we do?

Are they going to force companies to comply? You are forced to use two-factor authentication against your will with many services. Try logging into almost any bank in America, they all use two-factor authentication for the most part. They won't even let you use something like an authenticator app with most of them.

Pull your cash from the banks now. We cannot trust them any longer.

This sounds like a Whatapp add.

The expert that you interviewed literally said two factor isn’t the issue. It’s clicking links. Don’t click links emailed or messaged to you. Go directly to the website that you know is valid.

How do these hacks keep happening? Do all telecom companies use 12345 for their mainframe passwords?

As far as 2-factor authentication goes, some apps require it to access an account.

Government: "Move from a hackable method to a method we already hack."

This is insane . I can barely remember my name let Alone a different password for each site!!

Text messages are not secure? Now, who didn't know that already? 🤦🏻‍♂️

Password managing apps? So a place where all your passwords are stored online? No way. Get a physical authentication key. Why aren’t they suggesting that?

The banks and companies requiring it don't exactly give you an option whether to use it.

OR, ya know, maybe the FBI can actually just arrest the hackers.

These guys don't even know what they're talking about!

“Dont lock your doors” “Okay Agent Smith!”

Meanwhile, KZbin forces us to use two-factor authentication, which I hate. If anything goes wrong with your phone or you can't pay the bill for some reason, you are essentially locked out of your youtube account, along with any other accounts you use the method with.

I paid for my telephone for MY use. I talk, text and take photos - nothing else. Sending me a bill via text is a sure way to not get paid!

Really, is that what the government says!

We started the sms codes in the first place because our emails got hacked.WE ain't safe nowadays and no where are we. 😮😮😮😮

It’s very important for real journalistic news outlets, to find the negligence and the accountability inside the organizations who are paid billions of dollars to prevent these problems to expose their personal and organizational weaknesses and to hold them accountable in the court of public opinion, even if you do get advertising revenue from them

There is a big problem with all of this that most aren't taking into account. Switching to WhatsApp or other encrypted software is great, however if both people at both ends sending and receiving the message don't have the encrypted software, then it's not encrypted. Both have to have the encryption software -- without that the message is not encrypted.

Why am I only hearing about this by scrolling past a random yt vid and not straight from apple or verizon. WTF

It's a one time code

It should be illegal for companies to sell or share our info. Have my info being breached through companies I have never dealt with or connected to.

This feels like an ad for Whatsapp, more than anything else.

So what happens when Google locks you out unless you do the phone text method without any other options? This is absurd.

Cant keep up with this scamcrap….

One thing the video doesn’t mention is the app Signal, which is encrypted like WhatsApp but isn’t owned by the garbage Meta company.

We must unite as citizens to compel the government to enact laws that prohibit businesses from selling our personal information without our consent or knowledge.

Whoever scripted this or helped these journalists prepare should be **helped more**. What a hot mess of reporting. OR This is how it was supposed to go out. 😂

Why don't they do their job and catch these people???

Makes no sense.

Imagine if the government was proactive and not reactive.

Considering they generate random numbers, the only risk is if a hacker can intercept your SMS and hack in by obtaining the code needed to confirm they are you.

Use One Time Password (OTP). Password will be sent to your email and can only be used once and expires within 2 to 3 minutes.

No one thought of interviewing the providers/makers and ask them what their doing about this!?!

Please tell this to the banking institutions that still, in the last month of 2024, only offer SMS texted code 2FA. Also pass this on to Lyft as well, I don't know what the hell that modern era tech company is doing not utilizing username and password and solely relying on phone number/text account authentication/login.

Then what is the alternative??

From the Ashin interview. "The biggest worry is not two-factor." But the FBI says to stop. Stop what? Is it spying on messages or stopping codes for identification? By conflating text messages with temporary ID codes, the "what to do" question is never answered for texts, ID codes because the solutions offered were never specific for ID codes or texts.

I only have sms 2fa as an option. It sucks. I wish I could use email for 2fa

The best thing is get back to using common sense which is rarely used anymore

Oh please, for the love of god, Salesforce please do away with the Authenticator. It’s horrible.

Crayons and paper. Never fails. And being a bad sp3ller is even better.

Very confusing and not very clear how to. solve the problem

So how do they get into my accounts without my bank passwords? You need both the text and the pw. . 🤦🏻‍♂️ Fear mongering and app developer advertising. Dumb.