A new European initiative dubbed UnifiedAttestation aims to build a free and open-source alternative to Google’s Play Integrity checks. The initiative is backed by smartphone maker Volla, while other partners include /e/OS maker Murena and the team behind iodé OS. The feature will be distributed under an Apache 2.0 license.
I appreciate the effort but my banking apps still rely on 2FA through SMS. They aren’t interested in implementing a technology that is more secure or even one that is different than what they have already, especially for a fraction of a fraction of a fraction of their user base.
And you trust them with your money!?!
Fair point but I am not going to do all my shopping exclusively out of catalogs and mail in my payment with cash.
Its a shitty situation but short of government regulation (ha) nothing is going to change.
Are there no other banks in your area?..
Yes and as far as I can tell, they all have that as their system. Also the changing of the password every quarter which has proven to actually decrease password security and increase password reuse.
I should say, if anyone knows a bank with proper modern online security protocols I am willing to listen.
Revolut
Fidelity. https://www.fidelity.com/security/extra-security-login
I’m personally quite fond of Wise.
All the big banks I use don’t do anything ither than SMS, they’re lazy AF. This is where regulation should force security in spite of development cost
That’s truly mind-blowing, and fraud must be rampant! I have accounts in several different banks in several different countries, both inside and outside of the EU, and I have never ever encountered a bank that would rely on SMS “authentication” for security, not even in the distant past when online banking was new.
Most large banks in my country still support 2FA via SMS, and it was a popular authentication method in the past. At least, in recent years, they are switching to Smart OTP, biometric authentication, etc., like with my bank, they switched to Smart OTP in around 2024. The government forced biometric authentication for all large money transfer transactions in 2024–2025.
However, it’s too late to stop scammers from scamming victims using the data they get.
That’s truly mind-blowing to me.
You are right.
Seriously, this shit should be illegal already