Account recovery and resets based solely on mobile numbers are not secure. 2fa based on text messages (SMS) are not secure and very easily hijackable.
There are solutions out there where you can avoid the mobile number as the sole key for backups. The saas pass authenticator works offline by default. You can duplicate it on multiple devices without a mobile number. You can also set up a recovery with a mobile number AND a master password (custom question answer capabilities as well.
There are solutions out there where you can avoid the mobile number as the sole key for backups. The saas pass authenticator works offline by default. You can duplicate it on multiple devices without a mobile number. You can also set up a recovery with a mobile number AND a master password (custom question answer capabilities as well.