Despite warnings that sending one-time passwords via text messages is a flawed security measure, companies continue to roll out the approach, especially in consumer-facing applications.



Source: DarkReading
Source Link: https://www.darkreading.com/application-security/valve-2fa-mandate-game-developers-sms-stickiness