Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

They could use OTP - OT Login Links to log users in, no call center required.


I like OTP. But I fear when I change phone number or leave country, the next owner could literally login to any of my online accounts using OTP on my previous number. That's why I always remove it from every account when I update, but can't keep track of all my accounts or emails.


Don’t give up your main number. 10 years ago I changed phone numbers and ported my old one to a super cheap SIP line. 3 years later I grabbed it back and it’s been that’s my main number since.

I use SMS OTP for a lot of services which would have little consequence if hacked.. and leave things like email and other sensitive stuff to the apps generating tokens.


That's true. My UK number seems to be completely fine after many years, even if I don't top it up. But some other country, after few months of inactivity they seem to be automatically sold to a new user.




Consider applying for YC's Summer 2026 batch! Applications are open till May 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: