Dear motherfuckers,
instead of making my account secure - and if you were not entirely evil and fucking retarded you'd know that "availability" is one of the three pillars of cybersecurity - you just fucking scam people. Even if they set up their 2FA App, it is not an option to log in via 2FA code you HAVE to procvide a phone login.
Of course you lie to the normies, telling them, this would be for their "security" (it's not). Not only does it violate best practices of IT-security (such as availability) and introduce a new class of attack vectors (SIM swap), the only reason you do 2FA is to track people's identities across accounts. To remove any hints of anonymity. Which is, of course, yet another unwarranted security risk you cause to the users.
Your behaviour, lack of skill, lack of understanding, disgust me.
FIX THIS. NOW.
Dear motherfuckers,
instead of making my account secure - and if you were not entirely evil and fucking retarded you'd know that "availability" is one of the three pillars of cybersecurity - you just fucking scam people. Even if they set up their 2FA App, it is not an option to log in via 2FA code you HAVE to procvide a phone login.
Of course you lie to the normies, telling them, this would be for their "security" (it's not). Not only does it violate best practices of IT-security (such as availability) and introduce a new class of attack vectors (SIM swap), the only reason you do 2FA is to track people's identities across accounts. To remove any hints of anonymity. Which is, of course, yet another unwarranted security risk you cause to the users.
Your behaviour, lack of skill, lack of understanding, disgust me.
FIX THIS. NOW.