Tangerine - Two step authentication | Page 2 | Tangerine Bank | Discussion forum

Please consider registering
guest

sp_LogInOut Log In sp_Registration Register

Register | Lost password?
Advanced Search

— Forum Scope —




— Match —





— Forum Options —





Minimum search word length is 3 characters - maximum search word length is 84 characters

No permission to create posts
sp_Feed Topic RSS sp_TopicIcon
Tangerine - Two step authentication
April 16, 2021
6:14 pm
Loonie
Member
Members
Forum Posts: 9182
Member Since:
October 21, 2013
sp_UserOnlineSmall Online

Correct me if I'm wrong, but i thought they said on the news last night that these new phone prices would be held to $35/month, which is not my idea of cheap.

April 16, 2021
6:14 pm
Bill
Member
Members
Forum Posts: 3859
Member Since:
September 11, 2013
sp_UserOfflineSmall Offline

pooreva, I have a pay-as-you-go phone with one of the pay by the minute plans (for voice calls) which I just never use so my monthly bill is zero, then I add the $5/month text add-on plan. I use my home landline for voice calls, if a voice call comes to my cell I just don't answer. So this would work for those who want to provide a cell number for banks, etc to text to.

April 16, 2021
6:20 pm
Adam1
Member
Members
Forum Posts: 59
Member Since:
August 28, 2019
sp_UserOfflineSmall Offline

Dean said

I believe it's available for everyone.

- After signing in, click on your name at the top right of the screen (e.g. Bill A.).
- Then select; Security & Login
- Then scroll down to; 2-Step Authentication .

      Dean

  

I checked the app, mobile site and on my computer, but can't find the option after going through every one of the settings. There's the option for "double safe secure login" which is for security questions (always been there) and "security" for changing the 6 digit login pin. Other than that, the only login settings I see are for authorized devices using the app for biometric sign in. I don't specifically see a "security & login" option after clicking my name. I see: profile and settings / devices / documents / forms / log out.

I'm still seeing this message too: "Wondering where your picture and phrase are?
We're adding some new enhanced security features and have decided to discontinue the picture and phrase."

Adam

April 16, 2021
11:34 pm
RetirEd
Member
Members
Forum Posts: 951
Member Since:
November 18, 2017
sp_UserOfflineSmall Offline

The Telcos in Canada have succeeded in weaseling their way around every CRTC attempt to lower consumer costs. In most cases, the CRTC orders have been recognized as useless (like bundling/unbundling, "Skinny Basic" et al) even before they were implemented. I expect the same to happen with the supposed orders to lower rates AND the new auctions to local/regional carriers wanting to resell access from the biggies. Remember how all the supposedly competitive new carriers all got sold to the big buillies in short order?
RetirEd

RetirEd

April 17, 2021
4:28 am
Alexandre
Member
Members
Forum Posts: 1011
Member Since:
November 8, 2018
sp_UserOfflineSmall Offline

Bill said
I have a pay-as-you-go phone with one of the pay by the minute plans (for voice calls) which I just never use so my monthly bill is zero, then I add the $5/month text add-on plan.  

Bill,
$0/month plans with pay per minute are long gone from Rogers, Bell, Telus, Virgin Mobile and all other Canadian wireless carriers.

Your plan must have been grandfathered by Rogers. Good for you. Similar plan at Virgin Mobile was not: for existent customers it went from $0/month to $5/month and as recently as April 2021 - to $10/month. It is still semi-grandfathered, for new customers same plan starts at $15.

$15/month is what someone has to budget today if they want Canadian cell phone plan with phone number to receive SMS. Give or take dollar or two.

April 17, 2021
10:43 am
Bill
Member
Members
Forum Posts: 3859
Member Since:
September 11, 2013
sp_UserOfflineSmall Offline

You might be right, Alexandre, good to know this might no longer be available so I'll doubly make sure to resist their messages to go on a monthly plan. I never did go a plan as far as I remember, all I know is I activated a phone with Rogers and bought a $100 prepaid voucher to give me a year's service at the same time, being charged against my $100 by the minute and by the text. Then I added the $5/month text package once my text usage rocketed from sending maybe 3 texts a month to sending about 20, as I do now. I notice when I sign in to my account it does say I'm on "Talk All Day" plan.

So does this mean if I change phones (one of my kids has offered me a castoff 5 year-old android smartphone) and need a new SIM card from Rogers (apparently my old one won't fit the new phone, he says) then I can't transfer this grandfathered plan to my new phone? If so forget it, I'm keeping my old phone.

April 17, 2021
1:41 pm
Alexandre
Member
Members
Forum Posts: 1011
Member Since:
November 8, 2018
sp_UserOfflineSmall Offline

Bill said
So does this mean if I change phones (one of my kids has offered me a castoff 5 year-old android smartphone) and need a new SIM card from Rogers (apparently my old one won't fit the new phone, he says) then I can't transfer this grandfathered plan to my new phone? If so forget it, I'm keeping my old phone.  

That depends on wireless carrier. With Virgin Mobile I know I can swap SIM card without them changing my grandfathered plan. I did that more than once.

You will need to buy new SIM card from Rogers and activate it on your Pay As You Go. New SIM card usually goes for $10-$15. Check helpful Rogers SIM cards FAQ.

They tell that you'll have to visit their store to activate new SIM card on Pay As You Go.

They say you can also call them, but for this type of service I would very strongly recommend store visit in person.

When it is safe, visit Rogers Wireless store, bring with you old phone with its SIM card, smartphone you want to replace it with, and ask store employee to confirm you won't lose your grandfathered, no longer offered, plan by replacing old SIM card with new one you are going to buy from them.
If they swear on bible say you won't - buy new Rogers SIM card at that store and ask them to do SIM card activation, and to insert it in your new smartphone. After it is done, you'll be able to test new SIM card with your new smartphone, not leaving the store.

April 17, 2021
5:56 pm
Bill
Member
Members
Forum Posts: 3859
Member Since:
September 11, 2013
sp_UserOfflineSmall Offline

Thanks, Alexandre, for the detailed procedure, I'll do that. And now that you mention all this I think this happened when my wife got her new phone a few years ago, we went to Rogers store and they put a new SIM card in her new phone and she stayed on the same plan. Guy told us a new SIM card was $10, we said sure, but then he ended up not charging us, he said his personal policy was only to charge people who he felt were angling for a free SIM card, pretty funny!

April 20, 2021
10:50 am
kelbee
Member
Members
Forum Posts: 21
Member Since:
July 5, 2019
sp_UserOfflineSmall Offline

Like adam1, I just see profile and settings / devices / documents / forms / log out. This makes me think it is a phased rollout. You can't do it until you get the email.

April 20, 2021
3:37 pm
Dean
Valhalla Mountains, British Columbia
Member
Members
Forum Posts: 1872
Member Since:
January 12, 2019
sp_UserOfflineSmall Offline

Adam1 said

I checked the app, mobile site and on my computer, but can't find the option after going through every one of the settings. There's the option for "double safe secure login" which is for security questions (always been there) and "security" for changing the 6 digit login pin. Other than that, the only login settings I see are for authorized devices using the app for biometric sign in. I don't specifically see a "security & login" option after clicking my name. I see: profile and settings / devices / documents / forms / log out.

I'm still seeing this message too: "Wondering where your picture and phrase are?
We're adding some new enhanced security features and have decided to discontinue the picture and phrase."  

kelbee said

Like adam1, I just see profile and settings / devices / documents / forms / log out. This makes me think it is a phased rollout. You can't do it until you get the email.  

.

Hmmm sf-confused

After signing in and then clicking on my name at the top of the page, I see six (6) selections :

      Profile & Settings
      Devices
      Security & Login
      Documents
      Forms
      Logout

After clicking on Security & Login, I see three main sections to make edits:

      - Login Details
      - 2-Step Authentication
      - Secret Questions and answers

I guess I must be 'Special'. sf-wink

    Dean

.

P.S.
I don't know if it makes any difference,
but I'm using a PC and Google Chrome.

sf-cool " Live Long, Healthy ... And Prosper! " sf-cool

April 20, 2021
4:13 pm
Righand
Member
Members
Forum Posts: 103
Member Since:
December 15, 2016
sp_UserOfflineSmall Offline

I don't think that I'm special but I have exactly the same selections on my PC. I clicked on 2 step authentication and was informed that I would be sent an SMS message on my cell that I would have to use before logging in.

I don't use my cell for banking and NEVER will, not nearly as secure as my home computer using their security questions that only I would know the answers to.

If I am ever forced to use a cell phone at Tangerine I will have no choice except to cancel all my accounts and credit card.sf-frown

April 20, 2021
5:55 pm
Adam1
Member
Members
Forum Posts: 59
Member Since:
August 28, 2019
sp_UserOfflineSmall Offline

I've confirmed with Tangerine that it's a pilot project available to clients who received the email about it, and will be available to everyone else soon as an option to log in.

It's very likely to not be mandatory, but it's possible that security questions might not be an option in the future for new clients. My old apple id I don't use anymore still has security questions set up, but my main apple id only has the option for 2fa codes.

They should have more options than only text message codes, though:

- automated voice call to receive codes
- backup phone number
- qr code to set up authenticator app
- push notifications to a trusted device
- recovery/backup codes
- physical/bluetooth security key
- windows hello, biometrics, etc.

Adam

April 20, 2021
8:01 pm
kelbee
Member
Members
Forum Posts: 21
Member Since:
July 5, 2019
sp_UserOfflineSmall Offline

Does anyone know of examples of banks that use anything Adam1 suggests?

Like at TD you can call or text to a mobile or landline. And TD Direct has a biometric voice print.

Not that SMS-based 2FA is perfect. Maybe this only applies to US but https://krebsonsecurity.com/2021/03/can-we-stop-pretending-sms-is-secure-now/

At least with my mobile provider you can get a PIN assigned so that you can be verified by customer service and then that might hopefully prevent a fraudster calling customer service to attempt a SIM swap.

April 21, 2021
9:58 am
Dean
Valhalla Mountains, British Columbia
Member
Members
Forum Posts: 1872
Member Since:
January 12, 2019
sp_UserOfflineSmall Offline

Righand said

. . .

If I am ever forced to use a cell phone at Tangerine I will have no choice except to cancel all my accounts and credit card.sf-frown  

I don't think we have much to worry about ... 2SA with a cell phone will probably always be Optional.

A few of the reasons :

    - Every cell provider has dead zones (i.e. areas of no reception)
    - Not everyone has/uses a cell phone (believe it, or not sf-wink)
    - Cell phones are 'battery dependent'.
    - Some rural folks (like me) don't have cell reception at home.

I'm a big fan of 2SA, but there are other ways to accomplish it.

    Dean

sf-cool " Live Long, Healthy ... And Prosper! " sf-cool

April 21, 2021
3:19 pm
Righand
Member
Members
Forum Posts: 103
Member Since:
December 15, 2016
sp_UserOfflineSmall Offline

I agree that in many cases 2SA IS better than nothing but what I don't understand is why they don't just force everyone to use a 2 step verification by having to answer a security question ?

Perhaps because many users would forget their answers so 2SA may better suit some clients ?sf-confused

April 21, 2021
6:17 pm
Norman1
Member
Members
Forum Posts: 6623
Member Since:
April 6, 2013
sp_UserOfflineSmall Offline

Fixed answers to a few security questions are not that more secure.

If the password can be captured as it is typed, then each of the answers can be captured as well as each is typed.

April 21, 2021
10:54 pm
Righand
Member
Members
Forum Posts: 103
Member Since:
December 15, 2016
sp_UserOfflineSmall Offline

Thanks, I guess I had better learn a little more about 2FAsf-wink

April 23, 2021
8:53 am
RetirEd
Member
Members
Forum Posts: 951
Member Since:
November 18, 2017
sp_UserOfflineSmall Offline

Bill - about mobile phone SIMs: they are all (as far as I know - there may be exceptions somewhere) alike except for coming in 3 physical sizes. The larger ones can be cut down to fit smaller slots without damaging the chip inside, or the smaller ones fitted into a bezel to fit the larger slots.

New SIMS mostly are snap-out 3-stage ones. They fit the large size, but you can snap out the small centre or the small centre with the medium bezel around it. If you want to put an existing small SIM in a larger slot, pop by a phone shop. They will have a wastebasket full of the bezels from SIMs they put into newer phones with the smallest size slot.

If you change providers, though, you will need a new SIM.
NewEd

RetirEd

April 23, 2021
9:06 am
Bill
Member
Members
Forum Posts: 3859
Member Since:
September 11, 2013
sp_UserOfflineSmall Offline

Thanks, RetireEd, good to know, I'll wait for this virus thing to settle down before I go to a Rogers store to see what's up with putting it from my old phone (it must be more than 10 years old, do these SIMs never wear out?) into my less-old-new-to-me phone.

April 23, 2021
10:00 am
Dean
Valhalla Mountains, British Columbia
Member
Members
Forum Posts: 1872
Member Since:
January 12, 2019
sp_UserOfflineSmall Offline

Norman1 said

Fixed answers to a few security questions are not that more secure.

If the password can be captured as it is typed, then each of the answers can be captured as well as each is typed.  

So True ⬆ ... especially when using unsecured, or undersecured devices. Keylogger Viruses have been around for quite some time now.

As for myself, the only device I use for Anything financial/sensitive is my desktop PC, which is protected with with high-end Internet Security software (i.e. 'Bitdefender Total Security').

When on the internet, you just Can't be too careful ❗

    Dean

sf-cool " Live Long, Healthy ... And Prosper! " sf-cool

No permission to create posts

Please write your comments in the forum.