Are any banks better than others?

TheDoc: > In my country most banks are all in on SMS 2FA, widespread TOTP adoption would be a blessing for us. Of course, passkeys would generally be even better. That’s terrible. Even passkeys are not good for banking, because they won’t let you verify that what is being done is actually what you wanted and not something else, like a hacker in control of your laptop could do, without you noticing. Good banks have separate TAN apps, which only work on relatively secure devices, like Android or iOS and not on windows or Linux, which let you verify the actual actions, e.g. showing payment information, before authorizing. Or they even go a step further and let you use special separate air-gapped devices just for that (they are relatively cheap and small), which makes it almost impossible to breach into. In some countries these two methods are the de-facto standard and methods like TOTP are not even allowed. Not all, but many of the special TAN apps also work on GrapheneOS.