How spammers are abusing 2fa SMS in web apps?
My webapp has an SMS 2FA option. When someone enrolls, it sends an SMS to the number specified by the user with hard coded text that contains a token that the user needs to then enter in the web app to confirm the enrollment. Pretty standa… Continue reading How spammers are abusing 2fa SMS in web apps?