Gmail prompt to provide phone number sounds like a threat

  • Madlaine@feddit.de
    link
    fedilink
    arrow-up
    8
    arrow-down
    1
    ·
    1 year ago

    2FA is just a second password and has nothing to do with encryption. Can simply be removed.

    They could bypass this authentication without problems, if they want. I lost my phone and my google business account got restored regardless of 2FA. It’s just a button for the support. The problem is the identification, especially of private customers (dunno if they would even do that).

    Encryption passwords aren’t time-based either, they must be static.