The age of hacking brings a return to the physical key

saor

Honorary Master
Joined
Feb 3, 2012
Messages
26,527
Any idea why banks (FNB at least) don't have 2FA?
It's the thing I want it most on. Granted you need a OTP to do major transactions but still...would prefer it secured at the first point of entry.
 
Joined
Dec 7, 2010
Messages
78,906
Any idea why banks (FNB at least) don't have 2FA?
It's the thing I want it most on. Granted you need a OTP to do major transactions but still...would prefer it secured at the first point of entry.

they do have 2FA, but not when logging in... good point actually.
 

Neoprod

Honorary Master
Joined
May 21, 2004
Messages
18,258
they do have 2FA, but not when logging in... good point actually.

Standard uses an OTP for internet banking logon...can't transact without it. What I would like to see, is the option to remove your cellphone number as a method of communication...given the cellphone providers will swap your SIM if someone sneezes at them, I would prefer just email (goes to the same place anyway - my phone).

They can keep using the cellphone for transaction notifications but not OTP's.
 
Joined
Dec 7, 2010
Messages
78,906
Standard uses an OTP for internet banking logon...can't transact without it. What I would like to see, is the option to remove your cellphone number as a method of communication...given the cellphone providers will swap your SIM if someone sneezes at them, I would prefer just email (goes to the same place anyway - my phone).

They can keep using the cellphone for transaction notifications but not OTP's.

FNB now uses the app itself as 2FA, not an actual PIN, you'll get an in-app message, and then either choose "Approve" or "Decline"

which is also better than email and SMS
 

Thor

Honorary Master
Joined
Jun 5, 2014
Messages
41,335
FNB now uses the app itself as 2FA, not an actual PIN, you'll get an in-app message, and then either choose "Approve" or "Decline"

which is also better than email and SMS
Capitec also does that if I'm not mistaken, we'll it pops up in the app asking you to confirm with your pin on the app.
 
Joined
Dec 7, 2010
Messages
78,906
Any idea why banks (FNB at least) don't have 2FA?
It's the thing I want it most on. Granted you need a OTP to do major transactions but still...would prefer it secured at the first point of entry.
So had a quick think about this... So let's say someone gets into your internet banking.... What damage can he do that benefits him as well?
 

JJCT

Expert Member
Joined
Mar 27, 2015
Messages
3,086
Standard uses an OTP for internet banking logon...can't transact without it. What I would like to see, is the option to remove your cellphone number as a method of communication...given the cellphone providers will swap your SIM if someone sneezes at them, I would prefer just email (goes to the same place anyway - my phone).

They can keep using the cellphone for transaction notifications but not OTP's.
My Standard account is setup to use OTP via email for adding a new or editing a beneficiary.
 

Neoprod

Honorary Master
Joined
May 21, 2004
Messages
18,258
My Standard account is setup to use OTP via email for adding a new or editing a beneficiary.

Yeah, I think I mixed up 3rd party authenticators (Paygate, 3D Secure) with internet banking. Those pop-ups you get while shopping online let you choose between email and SMS. I'll try SMS and see if it works...I hope it doesn't even though Standard have my cell number.
 

Neoprod

Honorary Master
Joined
May 21, 2004
Messages
18,258
FNB now uses the app itself as 2FA, not an actual PIN, you'll get an in-app message, and then either choose "Approve" or "Decline"

which is also better than email and SMS

Good and bad...your phone's lock screen is all that's standing between you and bankruptcy? :p
 

HavocXphere

Honorary Master
Joined
Oct 19, 2007
Messages
32,857
Was surprised when the latest 2FA I got was a physical card with numbers on it.

I guess that's one way to prevent hacking.
 

Jola

Honorary Master
Joined
Sep 22, 2005
Messages
19,732
Compared to an sms and email where you can read the otp from the lock screen?

That is a problem in the event that the thief has your phone, but if you receive an OTP via e-mail it at least prevents the sim-swap issue.
 
Joined
Dec 7, 2010
Messages
78,906
That is a problem in the event that the thief has your phone, but if you receive an OTP via e-mail it at least prevents the sim-swap issue.

yes, sure... but i prefer the in-app message from fnb... even more secure
 
Top