It's not that different is it? You still need to get a user to share/enter a live code?
From a practical PoV - most people have their phone on them all the time. A work phone or a physical token can (and will) get forgotten, a personal phone much less.
Bad actor goes to super secret page while working on 'fixing' and issue for the user. They then get the 2 digit request code and ask the user to input it to 'resolve' the issue.
Mostly the same as any other 2fa social engineering attack I guess, but the users phone does display what the code is for on the screen which could help.... But if your falling for it probably not.
Remember, they are not expecting to win, so this isn't a policy they are expecting to have to implement, just using it to attract more of the right wing vote they are losing to the Reform UK party.
Have you seen how slow their site is normally? Just request loads of obscure random pages and it will just eat their IO.
Throw some standard ddos on top to obscure things and your good? (Bad)
Edit: I know nothing about their storage, so I may be wrong. It just feels like they are held together with spit and prayers at the best of times.
They said that the option to use other authenticators were disabled by their company
The ms authenticator works in 'reverse' in that you type the code on the screen into the phone. I assume this is preferable to corporate as you can't be social engineered into giving out a 2fa token. It also has a "no this wasn't me" button to allow you to (I assume) notify IT if you are getting requests that are not you.
I don't believe that the authenticator app gives them access to anything on your phone? (Happy to learn here) And I think android lets you make some kind of business partition if you feel the need to?
They restarted it last year on YouTube. They have a few series of the classics up on a different channel, with this one being for new digs
Is this the team they moved it to, or the team they moved it from?
Then you don't get any new people at all. (Or very few)
I don't think Google has a road/mountain bike toggle for navigation does it? ☹️
Not sure who middle top left is meant to be?
Source (artstation)
Kinda negates all those weight gains (losses) from that fancy bike though!
A camera is a good investment though!