The decentralized social network Friend.tech took to social media to announce an updated feature that will allow users to add and remove various login methods used to access their personal accounts after SIM-swap reports.
On Oct. 4 Friend.tech said the settings have been made accessible via the app after tapping into the user’s wallet.
You can now add and remove log in methods for your https://t.co/YOHabcBL3H account. To access these settings, tap your wallet balance in the top right corner of the app pic.twitter.com/d37VWVk2Eb
— friend.tech (@friendtech) October 4, 2023
The platform continued its post by saying it has received inquiries from users as to why it has yet to enable a two-factor authentication passcode feature.
Friend.tech said that in its current state, the feature would most likely cause users to lock themselves out of their accounts. It said it has suggested UX updates to Privy, the company it uses to enable privacy features.
“Privy is working diligently to implement this and we will integrate the feature when they have finished.”
In a Q&A on Oct. 2 Friend.tech users complained that some were not prompted to confirm their passcodes and when mistyped neither Privy nor Friend.tech could reset it.
Meanwhile, users have been responding to the update with many saying they’ve already been locked out of their accounts.
Been locked out of my account for over a month. Where do I get help now that your help desk account is banned?
— Crossover (@crossover_step) October 4, 2023
One user complained that although they removed the number and replaced it with an alternative type of authentication, it did not log out sessions on other devices, which may still allow hackers to be logged in.
Related: Decentralized social networks have a retention problem, say execs
These updates come as the platform experienced exploits on Oct. 4, during which users reported compromised accounts after hackers took control of their mobile numbers, also known as SIM swaps.
According to reports, over 100 (ETH) was drained in just a week as a result.
The exploits continued into Oct. 5, by which time the scammers behind the compromises had been able to net at least $385,000 worth of (ETH).
This all follows significant revenue increases for Friend.tech with surges totalling 10,663 (ETH), and a total value locked (TVL) hitting more than 30,000 (ETH).
Magazine: Blockchain detectives: Mt. Gox collapse saw birth of Chainalysis
