Comment on Don't worry, we only lost the dangerous parts... not something personal like your dob
punkcoder@lemmy.world 10 months agoWith the IMEI and SIM card information they now have the details needed to take over MFA. I share my birthdate with people that I casually know, I try not to do that with MFA codes. Credit card details would be bad, but at this point with the number of people who have leaked it, I would be 100% surprised if you couldn’t find our CC data via a google search.
stardreamer@lemmy.blahaj.zone 10 months ago
Setup TOTP NOW. Mint added proper TOTP authentication as MFA a while back that should block sms based MFA. Might be a good way to prevent sim swapping attacks.
postmateDumbass@lemmy.world 10 months ago
Might work for mint but what about all the other accounts with other companies using mfa?
stardreamer@lemmy.blahaj.zone 10 months ago
The goal here is to prevent someone from requesting a SIM replacement to unlock your other accounts. Since the attack can use the IMEI and SIM info to contact customer service. If you have MFA on your mint account then they should ask for extra info before sending the replacement SIM, which would help with the current situation.