Google claims it has completely eliminated successful phishing attacks against its employees through the use of physical security keys and Universal Second Factor. However, John Callahan, CTO at Veridium, an identity and access management software vendor based in Quincy, Mass., noted that there are also benefits to users opting for 2FA via smartphone.