Corrections
Hey! Are my "corrections" e-mails going straight to your trash?
Sydney programmer Stuart Ryan has chipped Australia's dominant retail bank, the Commonwealth Bank, for allowing two factor authentication codes to be viewable on locked iPhones. The bank sends authentication tokens over push notifications on iOS devices, rather than SMS for users who had activated the second factor account log …
Personally, I'd say displaying the code's a good thing. Some folks seem to want to tip the balance between security and practicality to the extreme.
An attacker would still have had to "obtain their banking credentials, passed identification checks and stole a victim's iPhone". Anyone that determined is going to get access to your account. But for the vast majority of users, that 2FA is still a thousand times more effective than not having 2FA.