Finally got back my T-mobile account (yes, it was a sim swap, meaning that someone socially-engineered T-mobile itself to take over my phone number).

Main learning re twitter was:

> A phone number is sufficient to password reset a Twitter account even if not used as 2FA. Can completely remove phone from Twitter.

I had seen the "phone numbers are insecure, don't authenticate with them" advice before, but did not realize this

I don't remember when I *added* the number; my guess is that it was required to sign up for twitter blue.

thank you for sharing. 

that dank sharping post was pretty good. i clicked the link.

Anyway, glad to be on farcaster, where my account recovery can be controlled by a good wholesome ethereum address :)

TIL a registered mobile phone number is needed to comment on Community Notes. Ugh!

hard to apply good OPSEC when the system and the rules are opaque.

🚀 Your cast cashed in! Claim 🎩 DEGEN tokens on jam now! 🟣 https://jam.so/?referrer=q0EaDs 🟣

2FA & burner phone numbers... This is the way.