B.C. court rules 'SIM swap' theft victim can't sue phone company

Beaver, 29 days ago

Any ideas of how we can prevent his as consumers?

NotMyOldRedditName, 27 days ago

Don’t use sms 2fa if you can avoid it.

If you add OTP 2fa, be sure to remove sms backup.

Literally change banks if they don’t provide a non sms way. Some might not do OTP but they do have 2fa via the app.

Buy 2 yubikey (or 3) and protect everything you can with it, but most importantly your email as breaking into your email gets them into too much

Leave negative feedback on apps and services that only allow sms 2fa

Beaver, 27 days ago

Thank you for the advice I just ordered yubikeys. Gotta stay safe out there.

NotMyOldRedditName, 27 days ago

Awesome! I just want to double check, you did get at least 2?

It’s important to have a backup one in case you lose one as it’s not like an OTP code you get a backup code for.

Beaver, 27 days ago

Yeah I got more than one. It’s good to have redundancy.

PenguinTD, 1 month ago

then how about we don’t use the sim or text message as 2FA? It sucks that both bank/CRA use text message code as 2FA method.

NotMyOldRedditName, 27 days ago

CRA has OTP codes now.

I personally use it instead of sms now.

PenguinTD, 27 days ago

good to know I will upgrade to authenticator next.

canada.ca/…/multi-factor-authentication-access-cr…

nik282000, 1 month ago

Bullshit. The cell provider is the only entity with the ability to transfer a number to a new sim, they are 100% responsible and liable for the transaction.

And since many services only offer 2FA via SMS, there is even more reason that cell providers should smarten the fuck up and put some proper verification measures in place.

Beaver, 29 days ago

I hope I can use 2fa Authenticator with freedom just in case.

skozzii, 1 month ago

Seems like if the carrier just gave a new sim card to a scammer without verifying they should be on the hook for the bill?

Seems like a bad ruling, but I need more info than the article provides.

A new sim card should only be obtainable in store with valid ID.

bob_omb_battlefield, 1 month ago

I think the complex question is how much liability should be taking on for this sort of thing. Theoretically the losses could be massive if a rich person gets scammed… Is the liability unlimited?