Add 2-Factor Authentication/Multi-Factor Authentication to App [edited] (2 Merged Votes)
Comments
-
Please deploy OTP Multi-factor (Google Authenticator, Authy, etc.) as soon as possible. Quicken's existing multi-factor methods (SMS, phone, or email) are readily compromised. This is a finance app after all. Quicken is not following NIST best practices and this puts Quicken customer information at risk of being stolen.
2 -
Even Quicken's Chatbot AI correctly summarized that this state of affairs is "insane" — see attached! Please fix!
4 -
+1 for this feature.
1 -
Rocket Money supports MFA [removed - accuracy]. Maybe you guys can copy paste their like 3 lines of code to support this PLEASE. FOR THE LOVE OF GOD. SMS sucks as a second factor.
1 -
It's not the same parent company, as far as I can tell. I'm pretty sure Rocket is from Intuit. Quicken is from...Quicken.
Also, it's not three lines of code. It's hundreds. Plus extensive database changes. Plus hundreds of hours of testing. It's a big, big deal. Not that I don't support this change, but SMS doesn't suck so much that it warrants prioritizing this over, say, watchlist projection accuracy.
Anthony Bopp
Simplifi User Since July 2022Money talks. But all my paycheck ever says is goodbye
-2 -
Any update on this feature request?
1 -
Not only is it not there yet, but on new logins (*cleared cookies) it's no longer doing text message verification as it was.
—
Rob Wilkens1 -
I tried with a different browser and it did ask for text message.
2 -
I use 1password which is a HUGE convenience as I only need one password for all of my financials. the app keeps a really strong password and my 2fa challenge for most financial sites. I know there is some security built into the Simplifi by Quicken app, but I would feel more comfortable if Simplifi used passkeys with an app generated multi factor authentication.
I sign in from multiple computers, often computers that were just built as I am a PC Tech. I am RARELY asked for anything except the username and password. (I also clean my pc with a script every time I close the browser so that the computer looks fresh each time I open a browser.) I would hate to think that Simplifi will allow login from any computer just because my history indicates that I often sign in from computers that have no history.
Quicken for Windows user since 1994 (After MYM for DOS)
Simplifi by Quicken since 20230 -
Can we please get an update or a time-frame on when MFA will be implemented into Simplifi? The fact that anything tied to financial data and does NOT have MFA is astonishing. Considering this thread started in 2019 and it is now 2024 with no ETA on a core security function to protect customer data does not make me feel comfortable.
3 -
I realize the Simplifi is the new kid in the block. But please add more security, just SMS/TEXT pin code is not enough. can we include MFA Google Authenticator or Microsoft auth, etc.. Also Email pin as an option would be great too.
Also if you had an option to send email notification or even SMS whenever we login to let us know so and so/from some where just logged in, that would be great. Since all our financial data is centralized in one place as you can see it makes sense to be little freaked out ;)0 -
Would be nice to see an update on this considering security should be number 1 on the list of things an app like this embraces.
0 -
My SO and I share the login and having 2FA with SMS sucks as one is dependent on the other person being around. Having MFA using an authenticator app is a no brainer. It would be great if the the app team can provide an update on this.
0 -
It's 2024 and even the most innocuous platforms support TOTP 2FA. Even the US Government supports 2FA with Login.gov and ID.me.
In honor of cybersecurity awareness month, please consider adding support for TOTP 2FA authenticators. SMS & email OTPs are not very secure for compromised devices/networks (for example SS7 hacking). Thank you!
3 -
I don't want it frankly. It is already enough for me that I have to reply to a text message whenever I download the app again. But it's ok with me as long as we can turn it off.
Steve
Quicken Simplifi (Safari & iOS) Since 2021
Quicken Classic (MacOS) Since 2009-1 -
As Simplifi starts asking to review the app on a grade of 0 to 10 via a popup, I suggest you all factor in the fact that - for an app that aggregates all your personal finances - SMS 2FA is absolutely not enough. I voted on my satisfaction accordingly.
2 -
3 years later….Still nothing.
0 -
Guessing this is why so many banking institutions are blocking Simplifi…
0 -
@Humanleg86 I'd agree except in 2024 most financial institutions are still using SMS and email 2FA if they have anything at all. Really disappointed in the financial sector's stance on security. 🤦♂️
1 -
I work for a financial product company that deals with banking data. Our clients started requesting us to support 2FA even though none of our product services are exposed to the open internet. We started building it and are able to deploy it within 3 months supporting many forms of MFA, and we are a small company. A company as big as quicken should have been able to implement this feature by now. I have constantly argued with product owners who prioritize new features over security improvements as there's no ROI on the latter, until the crap hits the fan.
0