The goal here is to prevent someone from requesting a SIM replacement to unlock your other accounts. Since the attack can use the IMEI and SIM info to contact customer service. If you have MFA on your mint account then they should ask for extra info before sending the replacement SIM, which would help with the current situation.