Reddit Breach Highlights Limits of SMS-Based Authentication — Krebs on Security

Of particular note is that although the Reddit employee accounts tied to the breach were protected by SMS-based two-factor authentication, the intruder(s) managed to intercept that second factor.

BM @bm