Stop Compromising Developer Security with Phone Numbers

First thing I saw when I wanted to log in on Authy was input my phone number, eehhh?
Also I can’t get physical stuff shipped here especially electronics without paying huge sums of customs and taxes.

Either use Authy or Google Authenticator. But I’ve seen people have more trouble with Google Authenticator.

1 Like

So if I verify my phone number, does that allow me to get Voice Chat Access then?

No. You will need to verify with a valid method of identification, such as government ID or passport.

1 Like

While two-factor is spoofable under certain conditions, it’s definitely still good to have it over no extra layers of protection. BUT, I empathize with how you feel about security. NFCs are spoofable as well, but honestly Idk what isn’t these days.

Having a backup code is just like the phone verification in a sense that, Roblox being compromised would mean a bypass of every measure regardless, negotiating why people are nervous recently especially.

If you want my opinion on keeping yourself secure, change passwords more frequently. Bot networks can attack passwords with some success, but frequently changing passwords will keep them wasting time.

It’ll come to the point you’ll have to be a larger target for hackers to really start focusing their efforts on you usually, which also means you would possibly be forced to change passwords even more frequently due to their hacking speeds being increased.

I mention these things because your email is also very important, and also outside of Roblox TOS protection in a lot of cases where you don’t recieve damage to Roblox assets, but damage to the line of verification used to get into your account.

Seems like it’s gone now, did Roblox listen to us this time?

1 Like

No, you still need to verify with ID. I didn’t need to because I had early access.

1 Like

I used to have my phone number verified thinking it was secure but after I heard about top developers like callmehbob have their account compromised by way of sim swapping I was quick to remove my phone number from my account. I now only use security keys with biometrics for verification. One should also think if your friend or anyone for that matter has your phone number they can easily sim swap.

1 Like

Everyone should use prepaid phone numbers for more security and potentially set some restrictions to it if you can.

Also you should be careful with SMS based phishing messages and use TOTP like Aegis Authenticator instead of a phone number for 2FA.

It isn’t secure at all. Some secure applications are more like Signal, the best you could find (do not tell me Discord, it isn’t safe either).

1 Like

I can’t believe Discord has openly sold user data since the beginning of time and people still think it’s a safe and friendly platform/company.

1 Like

Mobile 2FA is better than no 2FA, personally I do not use mobile 2FA as I use a security key, but if I remember correctly enabling an Auth App or a Key makes this message go