2910082
You'll need to sign in or create an account to connect with an expert.
Often a verification code is provided to the user via text message or automated phone call. Please see this Help Article for more details.
Thank you for the response. This is the exact behavior I wish to remove. Signing in with a text message might be okay for a casual games website or social platform, but is grossly inappropriate for websites that collect, store, process, and display extremely sensitive and valuable financial data.
Did you know that SMS Authentication is illegal for banking websites in some countries?
This website does have actual 2FA (code generator app) capability. I had to use it to sign in to write this reply. There is no good reason for me to fall back to text messages. SMS is the weak link in a strong chain; being able to bypass my code generator with a text message is not acceptable security and makes everyone more vulnerable.
Does Intuit care about cybersecurity? No legitimate financial website still forces their users to use SMS text message as an option for 2FA/MFA. This should make the Inuit Chief Information Security Officer (CISO) very queasy.
Still have questions?
Questions are answered within a few hours on average.
Post a Question*Must create login to post
Ask questions and learn more about your taxes and finances.
pattiecarl
New Member
Abaline29
New Member
mikejunk1
New Member
drewdippold
New Member
NICKS4HD
New Member