When logging into a new browser, I received a 2FA email. When I went to check it, I noticed one from 8 hours earlier. I didn’t immediately remember logging into a new browser 8 hours ago so I had to retrace my steps and make sure it was a legit email. Roblox should tell you the context of the login attempt so that you know that the email was one you intended to generate.
This is what roblox’s 2FA email looks like, with no information that might give you the context:
This is what google’s security notification looks like, with information that tells me the context of the login:
Many sites like google and twitter will also tell you the device’s location if the login was suspicious.
