• Baines@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    ·
    edit-2
    11 months ago

    don’t even have to lose the device

    phone is the most common, plenty of ways in from mitm attacks (insecure wifi for example) to social eng the account phone provider

    guess you could go the dongle route but if it was super common thieves would just target them

    • asdfasdfasdf@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      11 months ago

      I think the question is less about getting hacked and more about getting permanently locked out of your account.

      • Baines@lemmy.world
        link
        fedilink
        English
        arrow-up
        2
        ·
        11 months ago

        sure but it shouldn’t be, any good process will have some recovery method

        course that can be a vulnerability as well

        thank god recovery questions are dead