2FA lockout solution

評論

72 條評論

  • Please Discord, do something about this!! So many people have been locked out of their accounts! I literally have proof that the account I lost is mine, I have access to my email and my phone number. It's just sad that I lost my old account and there's nothing I can do about it. It's making me think negatively about Discord in general because it makes me sad knowing that I lost an account filled with many of my friends' contacts, who I otherwise don't have any other way to contact them.  

    If somebody reads this thread, please don't lose hope, let's try to bring attention to this issue, and upvote any comments relating to this problem so Discord can see it. 

    13
  • BoBthEbUiLdEr

    Srsly can sum1 help same prblm as every1 here and just cuz of the 2fA Ehh well ig they still didn't do anything bout it just lost my main account and had alot of frndz with whom I'm nit connected anywhr else and many servers too..just cuz of the 2fA thing the supporters need to fix this ASAP it's so frustating..

    3
  • Ska-Dreamy

    Been locked outta my first account for over a year, the tablet I used had the 2fa on it but the charger port got busted before I could turn it off in time. Really wish this would get fixed, I want my memories back.

    6
  • ICan'tBelieveI'mHomosexual

    Everyone we gotta make this thread get known. Everyone if you can still get a hold of anyone you can let this be brought up to attention! Discord has denied us of any solution to a complete lockout but we know there is definitely some control! So let it be known a lot of us are suffering right now and want there to be a solution even if its for one time. We are all missing from others but dont give up. That is why this specific thread should be shown. I know we can do better.

    12
  • ErrorToLogin

    I just got locked out yesterday.

    1
  • ErrorToLogin

    Also I'm selling a server and now I have no way of contacting the people interested in it. So Discord, if you're seeing this, it's just a little urgent.

    5
  • emadello

    Same, Locked out, no way for go in...
    if I lose for any reason the 2FA verify, with BTC account I can re-join with other verification, email or phone number... but with discord... there isn’t anything to do... vary bad...

    5
  • ErrorToLogin

    Update! I sent an email to discord and I got someone to help me! 

    0
  • +meo

    ErrorToLogin How did you do that?
    It seems like there's only bots in support. I contacted them three times today and they just can't do anything about it.

    0
  • ErrorToLogin

    +meo I did this after the initial message:

    0
  • +meo

    ErrorToLogin Oh. Excuse me, I can't understand, did you solved the problem? Or you still aren't able to login into account?

    0
  • ErrorToLogin

    +meo Oh the problem got fixed it was my own fault. It just took me emailing them saying that I'm kinda getting desperate for them to respond. Also I had sent a support request before I had emailed Discord.

    0
  • MR.HEROR R GROOT FATHER

    LEST START PETION

    4
  • sad vaping cat

    Same. I had so many friends there and servers. I can't get back. Contacted discord and nothing has still happened.

    5
  • ODDEPOXY

    Clearly this is still an issue and yet they've done nothing about it. I lost my previous account due to using an authenticator app and my phone breaking.

    5
  • PimpMyRide

    Yep, I had a 2 year old account banned a year and a half ago. Please fix :(

    2
  • .rey

    Discord should take action on this already, This is such a pain.

    3
  • Finne

    Discord should do something about this. Back in day I used 2FA on Discord (Google Authenticator) and I had to factory reset my phone. I forgot I had Google Authenticator so all my Google Authenticator 2-step verifications on all services got lost when I factory reseted. Luckily, I was logged in on desktop and removed 2FA. If I wasn't logged on desktop I would have lost my account forever. Many services already have backup methods like a secret question or recovery by text message or something. (Discord's backup codes are totally not enough. I didn't even realize to save them for some reason when I used 2FA.) 2-step verification via email would also be good.

    4
  • MishonoYukisaki

    I've found a solution to the 2FA Lockout. When initiating the 2FA Lockout you must've used a Google Auth App. When you open the Google Auth App (Hopefully you didn't delete it) it should generate a new code that is in blue text. Enter the code into the 2FA box and you should gain acess.

    -4
  • Ebu

    Two years and still no solution. It is obvious many people struggled with a 2FA lockout due to various circumstances - in my case a factory reset of both phone and laptop and overwritten backup codes .txt file.

    From my experience both Steam and Battle.net apps have solutions to the 2FA lockout and the loss of backup codes, that being verification through SMS. It took me not even five minutes to reclaim both my Steam and Blizzard account that way.

    Discord support claims they do not collect personal data, so they cannot prove our identity with anything but the backup codes. But obviously they have to collect data such as email or phone number, otherwise users won't be able to use discord.

    My suggestion would be to implement forced SMS authentication for the people that have had their phone number added to the account in the past and claim they do not have access to the 2FA backup codes.

    There are high chances somebody has broken or lost their phone but they still do have access to their phone number. New SIM card with the same number can be requested from the phone company upon proving their identity (in real life, with their ID card). Thus I don't see this as a breach of security - anyone trying so hard to steal someone's identity and SIM card would have also broken through the 2FA codes.

    SMS authentication is already a function implemented. Both Google Authenticator and the Authy app can also read user's phone number. Only thing that needs to be done is to implement this function of forced SMS authentication after 2FA lockout.

    For the people that have been locked out of 2FA but never added their phone number I don't see only email verification as a solution, because that simply isn't two-factor authentication and can be used against them. For that discord would have to develop a system that lets us prove our identity. Best would be any past billing information, like credit card number.

    If people have no such information connected with their account then for example a recovery question ("What was the name of your first car/animal ?", "What is your mother's favourite colour ?" etc.) which many sites use. Or nicknames of last three people the user has DMed with. Obviously it's not a good security measure by itself, it would only come to use after inquiry from discord support team and perhaps have them immediately pair their phone number with the account.
    After all we are recovering an account here so adding your phone number should not be an issue I'd say.

    Discord's "solution" to 2FA lockouts now is to either delete the lost account (which any attacker with access to our email could do for us), or send us to the feedback page and claim "anything is possible in the future".

    So I'm here to make the future happen now and for that I need your support - upvote both OP's and my comment if you agree on forced SMS authentication after 2FA lockout to be implemented, our other ideas you like, and let the discord team see it.
    If you do not agree and have possible solutions to add then let us hear them and solve this mess.

    Thanks in advance.

    10
  • Lucy Foxtail

    I remember discord saying if someone a suggestion gets updated enough they would look into it.

    -2
  • MarkViews

    Discord please do this. Allow resetting password or removing 2FA with phone number.

    The message under adding a phone number is VERRY misleading and is the reason I lost my old account. "Add your phone as a backup 2FA method in case you loose your authentication app or backup codes."

    It makes it seem like I don't have to worry about keeping my 2FA backup codes safe as i'd be able to remove 2FA with my phone number, but instead I got trolled into loosing my account.

    3
  • .rey

    Only if they allowed multiple phone numbers. I could’ve retrieved my account already, The only problem is my phone number is somehow “invalid” based on discord.

    1
  • .rey

    Like, isn’t an email enough to get our accounts back? We’re even getting reminded whenever our passwords are changed.

    2
  • Leetbeast

    Shocking and Torturous how they don't help users who have been 2FA lockedout. They want me and others to suffer alot it seems by not helping us get access to our accounts.. how haven't they solved this already?? every other company helps you if you can prove that you are the owner and can send you sms or email verification (steam,google,blizzard,jagex,facebook). I got 2FAlockout this month after getting a new phone and uninstalled google authenticator and i got auto logged out from my PC never happened before i never manually log out.. cause i thought i had it to my new phone when i tranferred everything from old phone but no it was empty. 1. I know my email and got access to it. 2. i know my password. 3. i had verified my phone number to the account in april this year that is still my phone number. 4. I use the same PC as i did when i made the account only computer ive ever been logged into discord is my own. 5. i live at the same house i did in april 2017 when i made the account. 6. I had support help in January 2019 about my notfication problems on my account. 7. My email address that i registered on and still use is the same as my real life name. 8. i had added my credit card details and bought nitro on the account. There are 8 things that can prove im the owner of the account i could send picture of my drivers licence to prove ID as it got my name on it obviously, that is the same name i registered my account with in april 2017... i got so much proof it's my account and they still probably won't deactivate 2FA or send a one time code to sign in with to my email address or phone.. THIS NEEDS TO BE FIXED DISCORD PLEASE DO SOMETHING!!! i have spent so many hours on my account over 4 years so many memories that is lost for me and everyone else that are 2FA lockedout.

    3
  • tylermasci

    Me too!

    1
  • Lucy Foxtail

    If this gets enough up votes I believe discord will take a look at this!!!!

    0
  • Norway

    Bump!

    1
  • SearInDiscord

    Same problem. My phone got softbricked while installing a custom ROM and it involved resetting the phone. And my google authenticator is gone and i cant go back to my alt.

    1
  • Banana CreamPie

    I've been trying to put pressure on them with public tweets, please if yall can join me and help put pressure on them BananaSfw is my Twitter and the one I'm tweeting at them with.

    1

登入寫評論。