3·
6 days agoAn attacker can simply send your email address to a legitimate service, and prompt for a 6-digit code. You can’t know for sure if the code is supposed to be entered in the right place. Password managers (a usual defense against phishing) can’t help you either.
I don’t understand. Is the email already compromised? Gmail requires 2 factor authentication via android to log into your email on new devices so there’s that.
Ah thank you. Makes much more sense.