SMS verification service. Re-assignment of a phone number..

LobioL

• 11 août 2020 10:13
• Modifié

I apologize immediately for the errors, because I do not know English. There are no "sentences" in my language.

 

I had a funny situation. Support in this situation could not help me in any way.

They relied on several facts.

1. Support cannot help due to strict privacy considerations. In this regard, they cannot tell which account MY number is registered on.
2.  Support cannot manually bind and untie MY phone number from someone else's account. And he offers to find me this person on his own.
3.  The only way to untie my phone number from someone else’s account is to delete the account to which it is linked.
4.  Offer to use a different phone number. But for each phone number we have a monthly fee. Do I have to pay extra money monthly, for the sake of linking numbers to discord? Seriously?

I describe the essence:

 

• In our country, if the number has not been active for a long time, operators block it and resell it again. This means that I could purchase a SIM card to an account already tied.
• Anyone could use the number if your phone was stolen. Even if it is locked, a password notification will be visible. This means that anyone could be a person.

My suggestion is to solve this problem.

• Rebind the phone number.

Create the ability to untie your phone number without deleting your account. (or to upgrade this system because of the essence described.) I have my phone number. Why can't I confirm that I own it? Let them send the code to the mail for binding, then send the code to the phone. If the passwords match, the number can be reassigned.
If the passwords do not match, they suggest checking your data and making an automatic system by sending SMS of your Discord identifier.

• Re-associate a phone number with support.

When communicating with support, they ask you to confirm the phone number. Support checks the account from which the cast was created. Refines data. I throw off support to my active phone number, which I can’t attach to my account. Support sends a temporary password that you need to poison them back. This will confirm that the phone number belongs to me. After confirmation, support manually unbinds the phone number from someone else's account and notifies him that the number is untied. My number becomes untied from someone else's account. My number is tied to my account.

 

I will be glad of any support and suggestion in this proposal. This problem needs to be addressed. This is an important point in the confidentiality of my data, the data of all users who fall into such situations.
Thanks.

 

UPD: 

More and more servers with SMS verification are appearing. But because of this problem, I cannot use these servers to the fullest, especially if they are asked to put a reaction to get roles.

11

• 

  Yulia

  • 12 août 2020 20:01

  An interesting situation, but from my point of view, you shouldn't bother with a SIM card. You can purchase a virtual phone number. I recommend Telnum.net and have been using it for a year now.

  0
• 

  xicht

  • 16 février 2021 08:29

  The problem already starts before, as an 'identity' is not linked to a 'phone'.

  0
• 

  LobioL

  • 23 février 2021 10:28
  • Modifié

  After adding the function of logging in by phone number, I expected to be able to log into someone else's account to which my personal number is linked. Unfortunately this feature does not work. I am changing my account password, but I cannot log into someone else's account.

  0
• 

  its_tricky83

  • 9 avril 2021 02:17
  • Modifié

  I am stuck in this same predicament as well.

  When I recently logged on using my password and auth-app 2fa. It prompted me to add my Mobile number for security reasons.. when I went to add my mobile number it initially sent me a 6 digit pin, but when I entered that Pin, it said my Mobile number is already registered to another account.. And then no longer allowed me to use my mobile (even though two minutes before hand it got 50% through the process of adding it to my account).

  Now what makes this SUPER FRUSTRATING, is that when I attempt to logon to Discord using my Phone Number & Password instead of Email & Password, it sends me a 6 digit pin to my mobile number (yes the same number). But when I punch the pin into the prompt, it says "Oops there is a problem and we'll need to verify by sending you an email"... but when you enter your email address, it says "An account already exists"... LIKE, FREAKING OBVIOUSLY AN ACCOUNT EXISTS. This is seriously backwards and broken.

  Support have said there is nothing they can do. So I can't add MY mobile to MY discord.. and it remains stuck in their broken system.

  I'm pretty pee'd off by the entire scenario tbh.

  1
• 

  Pterodaxyl

  • 6 juillet 2021 05:59

  Quite apart from wanting to re-use a mobile number or email address on a new Discord account, I'm pretty sure that the GDPR and similar privacy legislation prohibits retaining information when you've been directed by the data subject to delete it.

  And in this context, that means the person who receives communications sent to the number or address; any previous account connected to it is irrelevant.

  It should never be necessary to know (or log into) an existing account in order to detach a phone number or email from it; rather, one should simply have to prove that they're the one receiving codes sent to it. Which is trivially easy: send an "are you sure you want to detach" message, to the email or phone, and have the user submit it to the unlink web page.

  Of course you want to have extra warnings so that people don't accidentally disable their 2FA or recovery address, but it shouldn't even need Support to get involved at all.

  Once that's been done, then it should be free to attach to a new account.

  -1
• 

  LobioL

  • 8 décembre 2021 16:29

  Pterodaxyl

  I offered support a way for them to send a code to my phone number. Which I, in turn, would send to support, in order to verify my identity. They said they couldn't do it. Hence, they do not want to solve such a narrowly focused problem with mobile numbers. I have received many requests about this and every time - the same refusal.

  0
• 

  Pterodaxyl

  • 8 décembre 2021 18:29

  When a staff member "can't", that's because the corporation "won't" provide appropriate training and access, which almost certainly puts the corporate in violation of some law. The trick is to find out what law covers this situation in your jurisdiction, and then next time when you call text support and they say "can't", you ask to be put through to their legal department, whom you threaten to sue or prosecute if they don't remove your phone number from their database.

  Of course you might live somewhere with a substandard legal system, or ineffective privacy legislation, in which case you have my sympathies.

  0

Vous devez vous connecter pour laisser un commentaire.