My bank has desktop apps but not for Linux. The only other alternative to a smartphone is a hardware TAN generator and they won't give me one because I "don't need it".
At the same time they only allow a 5-digit pin as password for everyone, and as the phone is the second factor it doesn't have 2FA itself. The 5-digit pin is enough to access everything, you don't even need a username because the app is tied to the account.
It's obvious they just threw something together to comply with regulations.
> It's obvious they just threw something together to comply with regulations.
Far worse, there is no regulation to force any of this it's just competition. Mostly by smaller "banks" with even worse track records concerning security.
There is regulation, that's why we have mandatory 2FA for bank accounts. I think (but am not sure) that SMS phase-out is also part of that regulation, but that might also just be banks being happy to force their software onto more devices to do who knows what.
At the same time they only allow a 5-digit pin as password for everyone, and as the phone is the second factor it doesn't have 2FA itself. The 5-digit pin is enough to access everything, you don't even need a username because the app is tied to the account.
It's obvious they just threw something together to comply with regulations.