Which bank, specifically, requires an app for the purpose of 2FA? Further, what is the 2FA process for logging in to the app itself - wouldn't you need a second form of authentication that's not the app in that instance? If so, is that form of 2FA not allowed when logging in via desktop/laptop?
I inquire because I use multiple different banks, CC providers and financial services, but have never once been required to use an app, even with "mobile" banks like Simple or One.
Sure, just an example ING (part of ING Group, 34th bank in the world according to https://en.wikipedia.org/wiki/List_of_largest_banks only highlighting this to show it's not a tiny random "weird" corner shop) requires to use either their mobile application or ItsMe (details https://fr.wikipedia.org/wiki/Itsme if you want but basically also 2FA as a mobile app) in order to login to their consumer/professional website. You can from the mobile app scan a QR-code which in turn will ask for authentification, e.g. biometrics.
Yes indeed registering the mobile application itself requires first another form of authentication, typically an SMS confirming the number plus a physical card with a physical card reader. You then input the resulting token in the app which validates it and then you don't need the card reader anymore while you rely on the mobile app. AFAICT the physical card reader options is not offered on some mobile payment options. I do not know if they are phasing it out of if it is because another method exists, namely if you have NOT registered their mobile application as a 2FA method, can you still use the physical card and card reader. I do not know that.
To be clear they do NOT require an app per se. They do though if you want to use online services, including payments, bank transfer, reading specific kind of documents, adding specific recipients for recurring transfer, transfer above thresholds, etc.
Hope it helps. If I missed something happy to try to clarify. Also FWIW and AFAICT it's getting more and more common for online services from bank in the EU.
> if a company makes a phone with GrapheneOS preinstalled, I'm giving them my money.
FWIW you can buy a Pixel (new or 2nd hand) and install GrapheneOS via the Web https://grapheneos.org/install/web with nothing (genuinely nothing) installed on your computer and get it working in ~15min (depending on your connection to download the ROM) out of which maybe ~2min will be your interacting with the setup process.
I initially bought an /e/OS precisely with your requirement, namely I "just" want a phone that works when I receive it, no tinkering, but having installed GrapheneOS myself few days (or weeks?) ago I can tell you, it's really straightforward.
Agreed but that's in the requirements. I meant to say assuming your setup matches the requirements but that's indeed a shortcoming. Thanks for clarifying.
Can't wait to see how this (rather unsurprising yet important finding) is going to get abused for and with AI :
"Hey, I see we haven't chat / you didn't vibe code for few days now, how about you get 1000 free tokens and we just see where that lead us?"
It perfectly aligns with sycophantic interaction and then roulette outcome one gets, sure it might not work 100% of the time but it works most of the time and "I" as a user somehow "get it" more than AI researcher so "I" can get it to work for me.
“Parachute Use to Prevent Death and Major Trauma When Jumping from Aircraft: Randomized Controlled Trial.” BMJ, vol. 363, 2018, k5094.
https://www.bmj.com/content/363/bmj.k5094
> Conclusions Parachute use did not reduce death or major traumatic injury when jumping from aircraft in the first randomized evaluation of this intervention. However, the trial was only able to enroll participants on small stationary aircraft on the ground, suggesting cautious extrapolation to high altitude jumps. When beliefs regarding the effectiveness of an intervention exist in the community, randomized trials might selectively enroll individuals with a lower perceived likelihood of benefit, thus diminishing the applicability of the results to clinical practice.
Anthropic is already starting to do this regularly with "usage promotions" [0] which is another way of a casino giving free $20 spins to gamblers (vibe-coders in this case) to keep gambling - or in this case, keep spending tokens on Claude.
I brought this up previously [1] and recently [2] it and I made that accurate comparison as a form of gambling and got immediately flag'd despite that being correct.
> I brought this up previously [1] and recently [2] it and I made that accurate comparison as a form of gambling and got immediately flag'd despite that being correct.
I remember a joke from few years ago that was showing an "AI" that was "learning" on its "own" which meant periodically starting from scratch with a new training set curated by a large team of researchers themselves relying on huge teams (far away) of annotators.
TL;DR: depends where you defined the boundaries of your "system".
It's definitely a topic of conversation in Reddit, etc... However I agree that the push to reduce US dependence by EU companies (and countries) is hampered by the fact that US stuff is already embedded (Microsoft but also Google, etc...) and that many of these companies are transnational anyway (very few European companies are solely inside the EU) and finally and most importantly just about every company will choose the option that does the job best for the right price (sovereignty is a distant second for most decision makers).
While few companies announce this publicly, I know from personal experience with corporate clients that many companies are preparing for Trump to use Big Tech as a bargaining chip.
And they should. Because the US is not behaving rationally at all.
>While few companies announce this publicly, I know from personal experience with corporate clients
Well I have even more personal experience that contradicts yours, and this isn't true at all. Everyone uses Claude / Gemini / OpenAI. Mistral isn't even on the table.
Come on, compared to Google Workspace / Microsoft's whatever-it's-called-these-days, the cost of switching from one LLM provider to another is pretty much zero.
Having an option at the back of your mind is all it takes right now, until push comes to shove of course.
That's the public sector. I can also give examples of schools in Denmark, cities in France, education system in France, cities in Spain too, but they said "big EU companies".
The intermediary solution for me between ffmpeg and kdenlive is LosslessCut (https://github.com/mifi/lossless-cut). Also free and open-source... of course it look less cool than a Terminal UI like the OP, but it's very practical when I don't want to reencode everything, or if I just need to change the format of container (MP4, MKV, etc.).
You are welcome! It is nice when you need to quickly crop or trim something and don’t want to launch a video editing app.
The repo is owned by a friend, you can leave a star to make him happy :)
It depends entirely on what you want. You can literally code a JavaScript 1-liner that will make a <textarea> then put the content back in the URL and it will work serverless on pretty much any platform with a Web browser.
You can also write a note taking app that will be federated yet private, that will have its own scripting language, etc. I mean you can yak-shave your way to write your own OS or even designing your own CPU for that.
So... I'm not sure that metric, time, means much without a proper context, including who does it. It's quite different if to do that, regardless of the tooling used, if you are a professional developer, designer, fullstack dev, prototypist, PM, marketer, writer, etc.
reply