“You strongly imply that I lied about my banks that support two factor security. . . and then state that you look this up by Googling it. You are the liar, Loonard. I stand by my statement. To put my accounts into a bank that uses two-factor authentication for account access I would be limited to just four of the banks listed...”
You insist that the only secure form of 2FA is the one used by Apple for account access. No surprise there. But then you listed 6 banks by name. I have no idea what your banks offer or do not offer in the way of 2FA but I do know that you’re a master of the authoritative half-truth, so I did some simple research that turned up statements about Bank of America like this:
“Log into your Bank of America account...You’ll then see a red button at the center of the page that reads “Add SafePass.” Click it and you can add one or more numbers for verification, and select whether you want SafePass to kick in only during significant financial transactions, or for every bank login.” (1)
Someone thinks that Bank of America offers 2FA (or SafePass) for transactions as well as logins. You say they don’t, but you have a problem with the definition of the word “fact,” so I’m more apt to believe Nathan at the WSJ.
(1) Safety First! How to Sign Up for Two-Step Verification on 11 Top Online Services
http://blogs.wsj.com/personal-technology/2014/04/11/safety-first-how-to-sign-up-for-two-step-verification-on-11-top-online-services/
No, Loonard, I have never "insisted" that the "only secure form of 2FA is the one used by Apple." That is a construct of your deluded mind and failure to comprehend what I wrote.
I always take advantage of the highest level of security offered by whatever service I use, whatever that is. For example, I told you I use SafePass on my Bank of America accounts with all options turned on. When I activated that, it covered movement of funds only. Apparently their IT department is now adding account access. Right now, BofA does allow access to my financial records using only a username and password. . . without a second factor. I just tried it again. . . and for my accounts there is no login offered for second factor. That's listed as "coming soon," for my accounts, and I will be "notified when it will be activated." Why do you think your 2FA link doesn't list that as being available? I think it probably is being rolled out now. Security is always being updated and improved. Good. When it's activated, I'll use it. I suspect it may not be activated in all areas or for all accounts yet.
Why would I lie about this? It is not in my interest to do so. Your own link showed that as of the date it was compiled, except for four obscure banks, the chart agreed with MY statement that most banks allowed software access to accounts without two-factor authentication. QED.
Give it a rest, Loonard.
By-the-way, your link to the Wall Street Journal article also has Wells Fargo Bank listed, so I decided to recheck their 2FA security offerings. . . which I've had turned on for years. Incidentally, I just transferred several thousand dollars this morning and got NO notice on any of my devices from Wells Fargo. . . but, then, they've never notified me except when I've told the ATM I wanted my receipt emailed to me. In any case, here is what THEY use 2FA security notifications (actually, it is not, it's merely "alert notifications") for, from the Wells Fargo "setting security alerts" WEBPAGE that links from the page pictured on the WSJ for setting phone numbers:
That's it. Not even, "Oops, you're over drawn."
Yet Nathan and the WSJ had THEM listed. Good useful article you're believing there, Loonard.
I just called my Wells Fargo Personal Banker and inquired. She said they will use the Second-Factor Authentication requirement if their fraud prevention department thinks a transaction on my account is suspicious. Only then will they text my phone with a message and a six digit code to retext to unlock my account to continue or complete the transaction that may be blocked. Second factor is not used to block access to my data. . . But if someone using that access were to change my password or contact phone numbers, I'd get a message email about such change. Whoopee.