Source: Chris Hoffman, HoToGeek.com, August 7, 2018
In a quest for perfect security, the perfect is the enemy of the good.
People are criticizing SMS-based two-factor authentication in the wake of the Reddit hack, but using SMS-based two factor is still much better than not using two-factor authentication at all.
Security professionals who talk about SMS verification not being good enough are getting too far ahead of themselves.
Over 90% of Gmail users aren’t using any two-factor authentication at all, according to a presentation Google engineer Grzegorz Milka gave at USENIX Enigma 2018.
