The Twilio Authy API has updated its 2FA authentication process to make it more secure and less costly. Instead of sending SMS-based 2FA codes, the API now sends enhanced information from devices to allow users to make risk-based decisions for authenticating to applications. This allows businesses to gather data about the device being used for authentication, such as how recently the app was installed or where the app is running, to improve their 2FA offerings and protect against potential security risks. The updated API provides new features, including push notifications, that can be used to evaluate the risk of the device being used and provide smarter security solutions. By leveraging this data, businesses can implement more effective authentication methods, such as prohibiting SMS-based 2FA for high-risk users or transactions, and make better decisions about which devices are trusted.