• oxjox@lemmy.ml
    link
    fedilink
    English
    arrow-up
    1
    arrow-down
    6
    ·
    1 year ago

    Yeahhh… that’s the point. They don’t care.

    Go ahead and give your number away to every website that asks you for it. I don’t care what you choose to do.

    I don’t see this enterprise as anything but malicious if it requires a cell phone just to sign up to see what it can do.

    Everything we do is tied to our cell phones now. Most banks offer MFA but not app-based or hardware-based MFA. If / when you lose your cell number, you’re screwed - which has happened to a number of people I know. People are dumb and willing to do anything for a thrill without considering the repercussions. If it’s not yet an issue, it will be in the very near future.

    I hope people seriously take a moment to pause and wonder why this service requires a cell phone number, what they’re doing with that number, and how secure the database is that maintains your personal information.

    This may be a good moment to remind people; if you’re not intending to open a bank account, apply for a credit card, or loan / mortgage soon, you should contact all three credit bureaus to proactively free your accounts so no one can open accounts without your knowledge.

    • berkeleyblue@lemmy.world
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      OpenAI allows you to signup with your Google Account. Last Time I checked there was no requirement to provide a phone number for that. But even if, what the hell is so special about your phone? If you still use MFA over Text, you shouldn’t be worried about some random company having your phone number, but rather about why you use the weakest form of MFA in the first place.

      Also, just by someone knowing your phone number, you don’t compromise your phone number. If that’s the case, better get a new one and make sure none of the people you ever give it to use Whatsapp or anything of that sort or your number will be in someone’s database at some point. Don’t ever call anyone with that number as they will have acces to it afterwards (and no, just disabling Caller ID doesn’t necessarily work to prevent this).

      I’m not sure what kind of paranoia you’re suffering from, but dude, touch some grass. Nothing of what you said makes any technical sense.

      • oxjox@lemmy.ml
        link
        fedilink
        English
        arrow-up
        2
        ·
        edit-2
        1 year ago

        Wow. This is incredible.

        Everyone complains about robo-calls and getting car warranty calls and they still keep giving out their phone number. I have yet to get any spam phone calls or texts.

        Right - SMS MFA is the worst and should be avoided whenever possible. Unfortunately, most financial institutions still have not advanced to offering anything more than that.

        Consider signing up for a service and using your cell phone number to register with it. Then you forget about that service and years later you need to gain access to the service but you have a new phone number. Now you’re shit out of luck. It has happened to me (a lot) and it’s happened to the person who had my cell number before me. This is the paranoia I suffer from - not having access to an account and the fear of the database being leaked or hacked - also something that has happened to me (thanks, TMobile). I’ve also had physical mail delivered to my home address for years because the phone number I currently have was used by the previous person to register with a service (DoorDash / Chewy).

        No one should ever use a cell phone to register for a service. MFA is one (bad) thing, registration is another. It’s foolish and it’s insecure.

        ChatGPT does in fact require you to register with a phone number when you sign up with either your Google / Microsoft / Apple ID. You’ve already logged in with an authenticated service so there’s no legit reason for ChatGPT to also require your phone number to register for an account. We’re talking about a platform explicitly produced and utilized to gather and store data and people are freely giving it information that can be used to authenticate their online persona.

        I get that this whole thing is about giving our decision making abilities to a computer but maybe we should all take a little bit of a pause to use their own grey matter to consider the ramifications of our actions before diving in headfirst at warp speed.