Bitcoin Forum

Here is how to make your SMS 2FA more secure and more stronger

---

Read complete and original article of this infographics here: https://www.kaspersky.com/blog/2fa-notification-trap/23819/

To be honest, these steps are strange. Previously, I have never thought of protection for my SIM card and its SMS 2FA. Moreover, those steps are more reliable and valuable because they recommended by Kaspersky, that is a strong and famous antivirus & internet security software's provider. I note your thread and that link to original article into my Must-read list.

Or better yet, do not use SMS 2FA due to the risk of sim-swapping[1], especially on cryptocurrency exchanges(if ever you trade frequently. Don't hold long-term investments on exchanges). This should be common knowledge by now. Instead, use 2FA apps like andOTP[2].

---

[1] https://www.theverge.com/2019/8/31/20841448/jack-dorsey-twitter-hacked-account-sim-swapping
[2] https://play.google.com/store/apps/details?id=org.shadowice.flocke.andotp&hl=en_SG

Yup, maybe SMS still have a risk like that, but many service doesn't use GA 2FA for OTP. or someone really think if using SMS 2FA is secure enought for his account.

If no one has access to your phone in the first place then you don't really need all these except you want to go the extra mile.

Or you could use a prepaid sim card just for this, of course depending on the country you're in.

Prepaid cards can't be replaced here with just giving your number and name since operators don't have any of your personal data associated with prepaid cards. I can enter a store and pick a pack of sim cards, get out and nobody will care. So for a replacement, you have to either physically prove you own the card or in case you claim your phone has been stolen or lost the operator will instantly see that your number is still active and without a valid  ID, a 4 page document full of stupid question when you used your number and what data plan you had when you paid for it how and so on, not even mentioning the 48 hours mandatory wait you have no chance of getting that number.

My cousin's girlfriend actually lost her phone and he was unable to prove he did own that prepaid number, so..she lost it forever.

With monthly plans it is indeed easier, you know who to impersonate if the operator is stupid enough and you know the birth date and address you might get away with a scam but in the prepaid case, there is simply nothing to match in their database.

It is important to verify sim cards, before using them as one of tool for email protections, exchanges accounts, or whichever platforms that allow 2FA security via SMS code verification.
It is stupid to active 2FA security via sim-card verification code, then losing the sim card due to it is pre-paid one.
I do not use pre-paid card for important things, but anyway you raised valuable points for newbies, whom have neither known nor cared about that.  :)