I heard from a friend that their direct relation had their phone number ported to another carrier, by thieves and then their bank account was drained after using the phone number as bank account verification for log in.
How does one prevent that?
(Just realised while typing that this may not be android related, though the phone was an android)