Please ask your questions here (not in email) – we promise to respond here, no such promise with email. This is a benefit of membership. Here’s info on how to post to this Q&A Forum.
You must be logged in as a Premium Member to Ask the Geeks a question. All are welcome to freely browse the Forums.

1:11 pm

July 25, 2016

Hi Chris and Jim,
Most of us are aware of the benefit of 2FA, but I’ve just become aware of the downside: Your phone account (carrier) could be hacked and 2FA SMS messages intercepted and used.
I’ve just read about the app Google Authenticator (and there are several other similar apps available). It appears that it is a piece of software on your phone that will replace having to get SMS messages for those companies that accept it. It seems slightly more secure.
It evens seems the government NIST (National Institute of Standards & Technology) has removed it’s approval of standard SMS based 2FA.
How about your opinion?
Thanks
Tom
Hi, Tom.
2FA does have flaws, but it’s still better than not using it.
I’m using the Google Authenticator on my Android for another level of protection.
I see where carriers are working on newer, more secure authentication processes. Here’s one article: https://www.engadget.com/2018/…..ntication/
Google recommends carrying extra security codes you get from your security settings whenever you travel, at least. They will work even if you don’t have a data connection.
For higher security, you can get a physical USB device (key) you plug into a computer for access that bypasses the SMS altogether. That seems like overkill for my situation, but I can see plenty of places it would be advisable.
Helping Travelers to Plan, Preserve, and Share their Travels
1 Guest(s)
