Flaw?
So as a lot of people are on facebook then, if I access an unguarded/unlocked phone I can,
- send "otp" to the access number
- check or compose an email on the phone to get email address (which is most likely the facebook login)
- take password once reply comes in
- off I go to a computer to steal private info
No?
Biting the hand that feeds IT
