While 2FA is active for logins, there is a critical lack of security for administrative changes. Major actions, such as updating the account password or email address, do not require an OTP or a confirmation link. This leaves the account vulnerable even if the initial login is secured.
#Poor account security
wanton bough
desert spoke
Is this because you’re worried you will get hacked or because you did? And was it because you share your account? Legitimate question none of my accs ever got hacked and they are a simple username and password.
covert latch
when u change ur password everyone who had ur logins will get kicked out
quaint swan
If 2FA is enabled, the initial login will request your OTP, making the authentication legitimate and secure. After the authentication, you should be authorized to change whatever you want since you already have authenticated yourself with 2FA. There is no need for further OTP as you already have the authorization. Imagine, you can access your account but not your e-mail address which leaves you locked out from your account changing the e-mail address since it requests a confirmation link. There is no other way around that creating a ticket towards support again and thats what support would like to avoid
brave basalt
I think what @wanton bough is saying, among other things, is that the current flow for changing your account's email address is a security risk.
Right now, you only need to verify the change in the new email, not the old one, and that's a major loophole.
Someone can lock you out entirely of your account (let's say if your login was compromised or you left your account logged in somewhere) just by changing the email, and it will push through without a confirmation or even a notification to the old email.
An easy fix would be to implement either an OTP that would be sent to the old email before being able to change email on the account, or a link to a Change Email form, also sent to the old email, similar to a Forgot Password type of flow.