Two Factor Authentication (2FA) - using mobile number to login; have been considered as one of the most secured method use in login verification process. This has been discredit as KnowBe4's Kevin Mitnick demonstrated how easy it is to spoof this method.
Mitnick who is the Chief Hacking Officer of KnowBe4, explain the concept in a video. The spoofing is carried out through phishing email, which has the ability to swipe login details due to the presence of code.
Check out Mitnicks video