At the end he mentioned he had 2fa activated. How did the scammer defeat that? D... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		tdy721 on April 4, 2020 \| parent \| context \| favorite \| on: How I lost control of our bank accounts to a phone... At the end he mentioned he had 2fa activated. How did the scammer defeat that? Did he read another code out to them and gloss over it?

bowmessage on April 4, 2020 [–]

That may have been the 'second code' referred to as a typo by the article, but was perhaps the standard 2fa token that came in after the original password change token? Nice catch.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact