Aaron Parecki · Jan 13, 2020 · 10:53 PM UTC

Aaron Parecki · Jan 13, 2020 · 10:53 PM UTC

Aaron Parecki @aaronpk

13 Jan 2020

The confusing part about online security is knowing *when* it's safe to give your SMS two-factor auth codes to a third party.

Jan 13, 2020 · 10:53 PM UTC

Alasdair Allan · Jan 13, 2020 · 10:55 PM UTC

Alasdair Allan @aallan

13 Jan 2020

Replying to @aaronpk

Umm. In what circumstances would you need to give a 2FA code to a third party? 😐

Aaron Parecki · Jan 13, 2020 · 10:57 PM UTC

Aaron Parecki @aaronpk

13 Jan 2020

you must not bank in the US 😉

Vika 🏳️‍🌈🏳️‍⚧️ (gonna move soon?) · Jan 14, 2020 · 1:44 AM UTC

Vika 🏳️‍🌈🏳️‍⚧️ (gonna move soon?) @UnseenVivian

14 Jan 2020

Replying to @aaronpk

Is it safe sometimes?!

Aaron Parecki · Jan 14, 2020 · 1:55 AM UTC

Aaron Parecki @aaronpk

14 Jan 2020

Nope, it's a trap! But it's also how most banking APIs work in the US 😭

lunatech · Jan 27, 2020 · 12:54 PM UTC

lunatech @lunatech

27 Jan 2020

Replying to @aaronpk

clearly a lot (several?) of us have never banked in the U.S., would you mind giving a 1-3 sentence synopsis of the (horror of the) setup?