I'm all for added security. However, I do have some concerns. Here's the scenario:
I have 2FA enabled on my email account. This means whenever I log into my email from a device OTHER than my smartphone, I have to use the authenticator app on my phone to allow access. I could also use my phone number for verification - again, on my smartphone.
Now, say my phone gets lost/stolen.
I can't get acccess to my email account from ANY device because I can't approve the sign-in request from my phone, via authenticator app or text, because I no longer have the device.
I also can't request a sim swap on giffgaff because I cannot verify the swap using the code I get sent to my email address or to my number via text.
What do I do now? I can't get access to my email OR phone number.
Any feedback would be highly appreciated!
I use Outlook and Microsoft provide users with a recovery code to use incase they don't have access to any of their sign-in verification options (authenticator app, phone number, etc.).
I've printed out that recovery code in case I ever need it. I'd advise anyone else to do the same.
Also, the authentication app I use is Microsoft Authenticator. They recently pushed out an update to their iOS app where the user can make a cloud backup of their account. This means if you lose your device, you can download Microsoft Authenticator on a new iOS device and recover your accounts.
I have an Android device, so hopefully Microsoft push the cloud backup feature to their Play Store app soon!
Anyway, I'm happy to hear about giffgaff introducing multi-factor authentiation for procedures like Sim Swap. Makes me feel a lot better about the security of my account. Thank you guys!