Nowadays, it is almost mandatory to enable two-factor authentication (2FA) in all your internet accounts, whether they are social media or services that you use.
We have already explained everything here about what it is and how to install reliable apps that manage this:
However, there are scammers creating suspicious apps that induce the user to activate 2FA in them, thus exposing their data and still charging for it.
And this week, Apple decided to do a clean-up in its app store.
Unreliable applications
We’ve already given a short list of good 2FA authentication apps. They are the most reliable, and there is no reason to try other apps that suddenly appear.
Last week, the new Twitter announced that it would start charging those who authenticated their account via SMS.
For those less familiar with technology, this sounded like a bad thing, and with that, there was an explosion in the search for alternative authentication apps, which ended up giving scammers an opportunity to take advantage of the moment.
SMS authentication is insecure
For some time now, it has been a consensus that using SMS messages as one of the factors of authentication is quite insecure. This is because it is possible to steal the number and put it on another chip (the infamous SIM-swap), or allow someone who steals your phone to access the code.
Therefore, it is a good initiative for Twitter to make it harder to use this method, giving space to authentication apps.
However, this has generated a frantic search in the App Store by people who had never heard of two-factor authentication before.
But this is where the danger lies.
Apps that steal 2FA
A security expert noticed several similar apps that claimed to offer 2FA authentication, developed by various different developers, but that showed themselves to be identical when opened.
