The most surprising part is that they were able to gain access to your account u... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		paxys on Oct 9, 2019 \| parent \| context \| favorite \| on: I was just subjected to the most credible phishing... The most surprising part is that they were able to gain access to your account using just the code texted to you. It's called second factor for a reason. The bank should still have sent you a password reset email.

momania on Oct 9, 2019 [–]

My bank doesn't even allow password resets like that. If you forget, you can request a new one, but that goes just like the initial setup: you get 2 separate documents per post, one with a new password, and one with a new activation code.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact