T-mobile, victim of a recent large data breach, provides an ambiguous feature called "Account Takeover Protection". This feature is intended to protect against SIM swaps.
https://www.t-mobile.com/support/plans-features/account-takeover-protection
There are a few issues I want to raise attention to:
1. TMO does not describe what these protections are.
2. The feature is Opt-in for every line on a plan. This requires starting the click through process multiple times per #.
3. The feature is unavailable to prepaid customers.
Why make this feature opt-in?
Why exclude this feature from prepaid plans?
These are abysmal security practices. Just because we are desensitized to these features doesn't mean we should ignore the bad practices.