I'm not sure how a larger service requirement plays into the efficiency of completing that action. The question in this case isn't about that, but instead whether or not a public entity or a private entity tasked with…
Definitely have to +1 this. I'd be happy to write some tests to get scotch on board.
If you use 2FA through an app instead of receiving text messages (assuming the service in question supports this) that would limit the ability to use the social engineering angle.
I'm not sure how a larger service requirement plays into the efficiency of completing that action. The question in this case isn't about that, but instead whether or not a public entity or a private entity tasked with…
Definitely have to +1 this. I'd be happy to write some tests to get scotch on board.
If you use 2FA through an app instead of receiving text messages (assuming the service in question supports this) that would limit the ability to use the social engineering angle.