We know that two-factor authentication (2FA) is much better than simple user and password credentials. Now hackers are trying to get past this with a nasty trick you need to be aware of. They send you a fake text that looks like it’s from the company you have an account with, claiming that your account may be hacked or that there is suspicious activity happening. In the same text they say they will send you your verification code and that you need to send that right back to them or your account gets closed. But if you text that verification code back, you have given the hacker just the thing they needed to hack into your account.
What are you supposed to do to stay safe?
If your accounts are protected by 2-factor authentication, the only time you will be sent the code is to verify an attempt to log into your account. That means if you did not just try to log in and you suddenly receive a verification code through a text message to your smartphone, it is because a scammer who already has your user name and password is trying to hack into your account.
You may also encrypt your information as a precaution measure.
Bottom line. Never provide your verification code to anyone. Only use it to input the code into your smartphone or computer when you log into a 2-factor authentication protected account.