Finally got back my T-mobile account (yes, it was a sim swap, meaning that someone socially-engineered T-mobile itself to take over my phone number).

Why aren’t you using an authenticator app or security key?

Stay Curious // iixii // Lazer Technologies // Prev: CoinDesk, Roc Nation // based

I am for most things; I don't think that was an option at the time that I last changed my twitter settings.

Ahh i see. It’s an option for Twitter and most other social apps now. 

Maybe we need to build an authenticator app based on a wallet address.

Importantly, even if you're using a more secure authenticator for Twitter, it can still be bypassed with the phone number using the account recovery flow.

This is why you should remove your phone number from your twitter account

Yes, that's true. Unfortunately there's also a setting in filters to ignore people who don't have their phone number set which a lot of people turn on as a spam mitigation.

Yeah it’s a lovely way for Twitter to force a security vulnerability on us.