I'm trying to learn more about "IT Security" and I've come across two-factor authentication. I understand two-factor authentication mechanisms use SMS to deliver
single-use passphrase to the user. But how secure is it? Is it hard to
intercept the SMS message containing the passphrase? Do mobile networks
use encryptions on SMS?