TPG Community

rygle · ‎14-11-2022

I put up other replies to this that were taken down by TPG. Can only imagine why?

Ahra_G · ‎14-11-2022

Our customer’s privacy is important to us. We take cybercrime extremely seriously at TPG Telecom and continue to make significant investments to help protect our customers and their personal information.

We use multi-factor authentication (MFA) to prevent unauthorised access to customer accounts. You can read more about MFA here: Multi-Factor Authentication at TPG

At this point, MFA via SMS is the only option available to be able to log-in to your online account.

Please provide us with your mobile number via PM so we can raise your concern with our Mobile team.

Thanks!

Ahra_G

rygle · ‎14-11-2022

The concern is that MFA or 2FA is not practical via SMS on mobile phones when out of range, including being overseas, and also that SMS is highly insecure.

rygle · ‎14-11-2022

Maybe my previous posts got taken down because they included links to articles that described why SMS is highly insecure, but just Google "SMS insecure" and read the articles you find.

rygle · ‎14-11-2022

Also, Google "ss7 insecure". SMS is built on the SS7 protocol and Wikipedia among many others have a whole section on security issues with SS7 - Google "SS7 Wikipedia" and scroll down the page.

You could also Google "IMSI catcher" to see how secure mobile call protocols in general are, and it's not happy news.

rygle · ‎12-10-2024

If you want to see how insecure SS7 and hence SMS messages are, watch this video from respected YouTube vlogger Veritasium.

https://www.youtube.com/watch?v=wVyu7NB7W6Y

TPG Community

Multi-Factor Authentication options