I think the 'verified' program for QRZ.com is a great idea, not only for making it hard for the Nigerian scamsters and others from accessing QRZ.com, but it's also good risk management for QRZ.com as a business. I don't have cell phone texting capability intentionally and on purpose, so to get verified on QRZ.com, their IT folks kindly referred me to "Winauth for Google" which, after fits and starts I was able to use. The two factor authentication occurs via a little program you download to your PC every time you want to use it that gives you a 6 digit code you enter into the QRZ log-in once a month. The Winauth program has to be linked to a google account as I understand it. So far so good. I used a g-mail address I'd had for years, just sitting there with no activity. Now that it's linked to 2 factor authentication, I've had dozens of spams that I never had before. Since I don't use g-mail for anything else, it's no big deal, but it shows you how your information is getting used.