Path: ...!weretis.net!feeder8.news.weretis.net!fu-berlin.de!uni-berlin.de!individual.net!not-for-mail
From: VanguardLH <V@nguard.LH>
Newsgroups: comp.mobile.android
Subject: Re: Codes sent by text message
Date: Mon, 11 Mar 2024 11:18:07 -0500
Organization: Usenet Elder
Lines: 15
Sender: V@nguard.LH
Message-ID: <1rjqe3j7o7vxf$.dlg@v.nguard.lh>
References: <ush35k$2791b$1@dont-email.me> <usid1f$2fqif$1@dont-email.me> <su6vbkx86o.ln2@Telcontar.valinor> <1uppdwld2qlfe$.dlg@v.nguard.lh> <usn9oq.2ds.1@ID-201911.user.individual.net>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Trace: individual.net JB5J9vCkhnlf/MTBEMPbyA3dr85FIrnKYGFoQ3Oprhr5JP2kEm
Keywords: VanguardLH,VLH
Cancel-Lock: sha1:ynS5Y2Tdw3xMn3+YngyXkT7j1lY= sha256:0+JbFX4d9BFaYHy5Ox76reK1dRrOC0ItLo/5l24z0og=
User-Agent: 40tude_Dialog/2.0.15.41
Bytes: 1551

Frank Slootweg <this@ddress.is.invalid> wrote:

>   Huh? Who is saying that the "log into a web form" is done on a *phone*?

Web traffic volume generated by phones has surpassed web traffic
generated by desktop PCs.  Most logins are on phones, not desktops.

https://gs.statcounter.com/platform-market-share/desktop-mobile/worldwide/

>   It's more likely done on a computer and in that case, the scenario
> involves *two* devices and the thief/hacker must be in possesion of the
> second device (phone), which he isn't.

2FA isn't about using 2 devices.  It's about 2 pieces of evidence:
password and 2FA code.