The total insecurity of Signaling System 7 means that crackers can now fake two-factor authentication using SMS.

I have never used two-factor authentication myself, because it requires a mobile phone (portable tracking and listening device) and I refuse to be tracked and listened to.

I think other sorts of two-factor authentication require a smart phone — which means, even more malicious.

I don't do internet banking at all, because it is legally risky as well as risky in regard to computer security.