Feds Warn SMS Authentication is Unsafe
The federal Cybersecurity and Infrastructure Security Agency (CISA) has warned against using SMS as a second factor in two-factor authentication. SMS messages are not encrypted and can be read by bad actors accessing the telecomms network. This follows reports in October of a major breach by hackers aligned with the Chinese government.