'%3e%3cpath%20d='M0,0%20v30%20h60%20v-30%20z'%20fill='%23012169'/%3e%3cpath%20d='M0,0%20L60,30%20M60,0%20L0,30'%20stroke='%23fff'%20stroke-width='6'/%3e%3cpath%20d='M0,0%20L60,30%20M60,0%20L0,30'%20stroke='%23C8102E'%20stroke-width='4'%20clip-path='url(%23s)'/%3e%3cpath%20d='M30,0%20v30%20M0,15%20h60'%20stroke='%23fff'%20stroke-width='10'/%3e%3cpath%20d='M30,0%20v30%20M0,15%20h60'%20stroke='%23C8102E'%20stroke-width='6'/%3e%3c/g%3e%3c/svg%3e)
UK
%20--%3e%3cuse%20href='%23s'%20x='0'%20y='0'/%3e%3cuse%20href='%23s'%20x='494'%20y='0'/%3e%3cuse%20href='%23s'%20x='988'%20y='0'/%3e%3cuse%20href='%23s'%20x='1482'%20y='0'/%3e%3cuse%20href='%23s'%20x='1976'%20y='0'/%3e%3cuse%20href='%23s'%20x='2470'%20y='0'/%3e%3cuse%20href='%23s'%20x='247'%20y='210'/%3e%3cuse%20href='%23s'%20x='741'%20y='210'/%3e%3cuse%20href='%23s'%20x='1235'%20y='210'/%3e%3cuse%20href='%23s'%20x='1729'%20y='210'/%3e%3cuse%20href='%23s'%20x='2223'%20y='210'/%3e%3cuse%20href='%23s'%20x='2717'%20y='210'/%3e%3cuse%20href='%23s'%20x='0'%20y='420'/%3e%3cuse%20href='%23s'%20x='494'%20y='420'/%3e%3cuse%20href='%23s'%20x='988'%20y='420'/%3e%3cuse%20href='%23s'%20x='1482'%20y='420'/%3e%3cuse%20href='%23s'%20x='1976'%20y='420'/%3e%3cuse%20href='%23s'%20x='2470'%20y='420'/%3e%3cuse%20href='%23s'%20x='247'%20y='630'/%3e%3cuse%20href='%23s'%20x='741'%20y='630'/%3e%3cuse%20href='%23s'%20x='1235'%20y='630'/%3e%3cuse%20href='%23s'%20x='1729'%20y='630'/%3e%3cuse%20href='%23s'%20x='2223'%20y='630'/%3e%3cuse%20href='%23s'%20x='2717'%20y='630'/%3e%3cuse%20href='%23s'%20x='0'%20y='840'/%3e%3cuse%20href='%23s'%20x='494'%20y='840'/%3e%3cuse%20href='%23s'%20x='988'%20y='840'/%3e%3cuse%20href='%23s'%20x='1482'%20y='840'/%3e%3cuse%20href='%23s'%20x='1976'%20y='840'/%3e%3cuse%20href='%23s'%20x='2470'%20y='840'/%3e%3cuse%20href='%23s'%20x='247'%20y='1050'/%3e%3cuse%20href='%23s'%20x='741'%20y='1050'/%3e%3cuse%20href='%23s'%20x='1235'%20y='1050'/%3e%3cuse%20href='%23s'%20x='1729'%20y='1050'/%3e%3cuse%20href='%23s'%20x='2223'%20y='1050'/%3e%3cuse%20href='%23s'%20x='2717'%20y='1050'/%3e%3cuse%20href='%23s'%20x='0'%20y='1260'/%3e%3cuse%20href='%23s'%20x='494'%20y='1260'/%3e%3cuse%20href='%23s'%20x='988'%20y='1260'/%3e%3cuse%20href='%23s'%20x='1482'%20y='1260'/%3e%3cuse%20href='%23s'%20x='1976'%20y='1260'/%3e%3cuse%20href='%23s'%20x='2470'%20y='1260'/%3e%3cuse%20href='%23s'%20x='247'%20y='1470'/%3e%3cuse%20href='%23s'%20x='741'%20y='1470'/%3e%3cuse%20href='%23s'%20x='1235'%20y='1470'/%3e%3cuse%20href='%23s'%20x='1729'%20y='1470'/%3e%3cuse%20href='%23s'%20x='2223'%20y='1470'/%3e%3cuse%20href='%23s'%20x='2717'%20y='1470'/%3e%3cuse%20href='%23s'%20x='0'%20y='1680'/%3e%3cuse%20href='%23s'%20x='494'%20y='1680'/%3e%3cuse%20href='%23s'%20x='988'%20y='1680'/%3e%3cuse%20href='%23s'%20x='1482'%20y='1680'/%3e%3cuse%20href='%23s'%20x='1976'%20y='1680'/%3e%3cuse%20href='%23s'%20x='2470'%20y='1680'/%3e%3c/g%3e%3c/svg%3e)
USA
What to do if…
you lose access to your authenticator app and cannot log in to financial accounts
Short answer
Pause and treat this as both an access problem and a potential scam risk. Contact your bank/provider via a trusted route (their official number or 159 where supported) to secure the account first, then complete their identity checks to reset your login/2FA.
Do not do these things
- Don’t approve any unexpected “sign-in”, “add device”, or “verification” prompts you didn’t initiate.
- Don’t use phone numbers, links, or QR codes sent by text/email/social messages to “fix” access.
- Don’t share one-time codes, “recovery codes,” passcodes, or push approvals with anyone (including someone claiming to be your bank).
- Don’t keep repeatedly attempting logins until you trigger a longer lockout.
- Don’t move money or change details while you’re not sure your access is secure.
What to do now
-
Break any scam pressure and switch to a trusted contact route.
If you’re in a live call/chat about this, stop. If you need your bank, hang up and call back using 159 (where supported) or the number on your card/statement or your bank’s official website. -
Quickly sanity-check whether this was triggered by a normal change.
Common triggers include: new phone, phone repair, device wipe, reinstalling the authenticator, changing SIM, or travel.
If you saw unexpected prompts, “your account is at risk” pressure, or requests to “read out a code,” treat it as suspicious. -
Call each financial provider and ask for “secure first, then recover.”
Say: “I’ve lost access to my authenticator app and can’t log in.” Ask them to:- secure the account (add extra checks, note the account, and confirm your contact details haven’t changed), and
- start their account recovery / 2FA reset process (this may involve ID checks, alternative verification, or sometimes an in-person/postal step depending on the provider).
-
Secure the routes that control password resets (email + mobile).
Many recoveries rely on your email or phone number.- If you can access your email on a trusted device, check for new sign-ins, and review forwarding rules or mailbox settings that could hide bank emails.
- If you suspect a SIM swap or phone account issue, contact your mobile network and ask about unauthorised SIM/account changes.
-
Check for unauthorised activity using any channel you still have.
If you can’t log in, you can still:- review banking/card alert texts or emails,
- check receipts/merchant emails for purchases you didn’t make, and
- ask the bank by phone to read out recent and pending transactions.
If anything is unauthorised, ask them to treat it as suspected fraud and follow their fraud process.
-
If bills are due today and you’re locked out, buy time safely.
Contact the biller/landlord/provider and explain you’re temporarily locked out of online banking access and need a short extension. Avoid expensive “instant” borrowing in a panic. -
If you think you were targeted by a scam, report it after your account is secured.
- England, Wales, Northern Ireland: report to Action Fraud (online via reportfraud.police.uk, or by phone if needed).
- Scotland: report to Police Scotland (for non-emergency, typically via 101 or their online reporting).
If anyone is in immediate danger or a crime is in progress, call 999.
What can wait
- Picking a “best” authenticator app or changing all security settings across every service.
- Closing accounts or switching banks.
- Writing a detailed timeline (brief notes are enough for now).
- Deciding whether to complain to an ombudsman (do it later if the provider doesn’t resolve it).
Important reassurance
Authenticator lockouts are common after phone loss, upgrades, or reinstalling apps. Banks may move slowly because they’re verifying identity and preventing takeover—sticking to trusted contact routes is the safest way to regain control.
Scope note
This is first-step guidance to stabilise access and reduce the risk of fraud. Each bank, card issuer, and investment platform has its own recovery steps and identity checks.
Important note
This is general information, not legal, financial, or security advice. If you think you’re being scammed or there are unauthorised transactions, prioritise contacting your provider through trusted routes and following their fraud process.
Additional Resources
- https://stopscamsuk.org.uk/our-work/159-phone-number/
- https://stopscamsuk.org.uk/campaign/get-help-now/
- https://www.reportfraud.police.uk/guide-to-reporting/
- https://www.gov.uk/report-suspicious-emails-websites-phishing
- https://www.ncsc.gov.uk/collection/phishing-scams/report-scam-call
- https://www.citizensadvice.org.uk/debt-and-money/banking/banking-security-and-fraud/
- https://www.financial-ombudsman.org.uk/consumers/complaints-can-help/banking-and-payments