Oddbean new post about login | logout I don't know how SIM-swapping works. How we prevent it? Can an eSIM be SIM-swapped?
I’ve used Efani’s cellular service for 3 years and counting.
An eSIM is a programmable chip soldered to the PCB. That's what I use when I set up my locked down kids' DeGoogled phones. That way they can't pull the SIM out and throw it in another device that isn't locked down, to gain Internet access.
ty 🙏 (what? no zaps?)
AFAIK one can do SIM swap attack if the operator has a contact center that can be socially engineered (or legally enforced, in case of nation state attack) to move your subscriber ID to another SIM. Then the attacker can request a new credential from services that you have registered with your phone number. Prevention: never do 2FA via SMS
ah, I see... so even a 2FA service like Authy, which is linked to your SIM/phone number, is no solution hm
If it's a service, then it has social/legal weak point It is always better to do standalone 2FA then back up the token generator somewhere. But not everyone will take this responsibility.
I've switched mostly to a FOSS, non-kyc 2FA, but am trapped in Authy bc of Gemini (cc used to get sats). Also MSFT Authenticator for the fiat mining job, but that is unavoidable at this point.
Is there an option in gemini to toggle 2FA off/on to get a new token? also my fiat job uses msft suite as well but I reject their authenticator 😂 foss all the way
no easy option, have to call a number, contact Authy support, blah blah blah ...you can use a non-MSFT authenticator? gonna look into this ty again