'%3e%3cpath%20d='M0,0%20v30%20h60%20v-30%20z'%20fill='%23012169'/%3e%3cpath%20d='M0,0%20L60,30%20M60,0%20L0,30'%20stroke='%23fff'%20stroke-width='6'/%3e%3cpath%20d='M0,0%20L60,30%20M60,0%20L0,30'%20stroke='%23C8102E'%20stroke-width='4'%20clip-path='url(%23s)'/%3e%3cpath%20d='M30,0%20v30%20M0,15%20h60'%20stroke='%23fff'%20stroke-width='10'/%3e%3cpath%20d='M30,0%20v30%20M0,15%20h60'%20stroke='%23C8102E'%20stroke-width='6'/%3e%3c/g%3e%3c/svg%3e)
UK
%20--%3e%3cuse%20href='%23s'%20x='0'%20y='0'/%3e%3cuse%20href='%23s'%20x='494'%20y='0'/%3e%3cuse%20href='%23s'%20x='988'%20y='0'/%3e%3cuse%20href='%23s'%20x='1482'%20y='0'/%3e%3cuse%20href='%23s'%20x='1976'%20y='0'/%3e%3cuse%20href='%23s'%20x='2470'%20y='0'/%3e%3cuse%20href='%23s'%20x='247'%20y='210'/%3e%3cuse%20href='%23s'%20x='741'%20y='210'/%3e%3cuse%20href='%23s'%20x='1235'%20y='210'/%3e%3cuse%20href='%23s'%20x='1729'%20y='210'/%3e%3cuse%20href='%23s'%20x='2223'%20y='210'/%3e%3cuse%20href='%23s'%20x='2717'%20y='210'/%3e%3cuse%20href='%23s'%20x='0'%20y='420'/%3e%3cuse%20href='%23s'%20x='494'%20y='420'/%3e%3cuse%20href='%23s'%20x='988'%20y='420'/%3e%3cuse%20href='%23s'%20x='1482'%20y='420'/%3e%3cuse%20href='%23s'%20x='1976'%20y='420'/%3e%3cuse%20href='%23s'%20x='2470'%20y='420'/%3e%3cuse%20href='%23s'%20x='247'%20y='630'/%3e%3cuse%20href='%23s'%20x='741'%20y='630'/%3e%3cuse%20href='%23s'%20x='1235'%20y='630'/%3e%3cuse%20href='%23s'%20x='1729'%20y='630'/%3e%3cuse%20href='%23s'%20x='2223'%20y='630'/%3e%3cuse%20href='%23s'%20x='2717'%20y='630'/%3e%3cuse%20href='%23s'%20x='0'%20y='840'/%3e%3cuse%20href='%23s'%20x='494'%20y='840'/%3e%3cuse%20href='%23s'%20x='988'%20y='840'/%3e%3cuse%20href='%23s'%20x='1482'%20y='840'/%3e%3cuse%20href='%23s'%20x='1976'%20y='840'/%3e%3cuse%20href='%23s'%20x='2470'%20y='840'/%3e%3cuse%20href='%23s'%20x='247'%20y='1050'/%3e%3cuse%20href='%23s'%20x='741'%20y='1050'/%3e%3cuse%20href='%23s'%20x='1235'%20y='1050'/%3e%3cuse%20href='%23s'%20x='1729'%20y='1050'/%3e%3cuse%20href='%23s'%20x='2223'%20y='1050'/%3e%3cuse%20href='%23s'%20x='2717'%20y='1050'/%3e%3cuse%20href='%23s'%20x='0'%20y='1260'/%3e%3cuse%20href='%23s'%20x='494'%20y='1260'/%3e%3cuse%20href='%23s'%20x='988'%20y='1260'/%3e%3cuse%20href='%23s'%20x='1482'%20y='1260'/%3e%3cuse%20href='%23s'%20x='1976'%20y='1260'/%3e%3cuse%20href='%23s'%20x='2470'%20y='1260'/%3e%3cuse%20href='%23s'%20x='247'%20y='1470'/%3e%3cuse%20href='%23s'%20x='741'%20y='1470'/%3e%3cuse%20href='%23s'%20x='1235'%20y='1470'/%3e%3cuse%20href='%23s'%20x='1729'%20y='1470'/%3e%3cuse%20href='%23s'%20x='2223'%20y='1470'/%3e%3cuse%20href='%23s'%20x='2717'%20y='1470'/%3e%3cuse%20href='%23s'%20x='0'%20y='1680'/%3e%3cuse%20href='%23s'%20x='494'%20y='1680'/%3e%3cuse%20href='%23s'%20x='988'%20y='1680'/%3e%3cuse%20href='%23s'%20x='1482'%20y='1680'/%3e%3cuse%20href='%23s'%20x='1976'%20y='1680'/%3e%3cuse%20href='%23s'%20x='2470'%20y='1680'/%3e%3c/g%3e%3c/svg%3e)
USA
us Technology & digital loss carrier account pin changed • wireless pin changed • security code changed • sim swap suspected • sim swapping • number port out scam • port out fraud • phone number hijacked • phone number stolen • mobile account takeover • unauthorized sim change • lost cell service suddenly • otp codes not arriving • sms 2fa intercepted • attacker changed my pin • number transfer in progress • transfer pin created • eSIM activated without me • can’t receive verification codes What to do if…
What to do if…
your mobile carrier account PIN or security code is changed without you
Short answer
Treat this as a takeover risk (SIM swap/port-out). Use another phone to contact your wireless carrier through an official number, tell them your account PIN/security code was changed without you, and ask them to immediately block SIM changes and outbound number transfers.
Do not do these things
- Don’t call a phone number from a suspicious “your SIM changed” text/email — use your carrier’s official support number from their website/app/bill.
- Don’t keep requesting SMS codes to “secure accounts” right now — if your number is compromised, those codes can be intercepted.
- Don’t share one-time codes, transfer PINs, or security answers with anyone who contacts you unexpectedly.
- Don’t repeatedly guess the PIN or hammer reset flows; it can lock you out and slow recovery.
- Don’t assume it’s harmless because your phone still works — a PIN change is often a setup step.
What to do now
- Switch to a safer way to act (1–2 minutes). If possible, get onto trusted Wi-Fi. Use a different phone (friend/landline) for calls so you’re not relying on the possibly-compromised SIM.
- Call your carrier immediately and ask for fraud/account security support. Say:
- “My account PIN/security code was changed without my authorization.”
- “I need you to block SIM changes and stop any port-out/number transfer now.”
- Ask for the carrier’s no-cost “lock” option that blocks number transfers and SIM changes (names vary). Use multiple terms:
- “number transfer lock / port freeze”
- “block outbound ports”
- “SIM change lock” Ask them to reverse the unauthorized PIN/security-code change and remove any unauthorized profile changes. Get a case number.
- Ask exactly what happened (and what’s pending). Ask whether there was:
- a SIM change or eSIM activation,
- a port-out request,
- a “number transfer PIN” created,
- changes to email/address on file. Ask for the time/date and (if a port-out happened) which carrier the number went to and what’s required to reclaim it.
- Secure the accounts that can unlock everything else (from a trusted device). In this order: email → banking → Apple ID/Google account → password manager.
- Change passwords (unique).
- Switch 2-step verification away from SMS to an authenticator app or security key where available.
- Sign out of other sessions/devices where the account offers it.
- Call banks/card issuers and put immediate safeguards in place. Tell them your phone number may be compromised and ask them to:
- watch/stop unusual transfers and new payees,
- add extra verification notes,
- confirm your contact details weren’t changed.
- Create an official identity-theft recovery trail if accounts were accessed or opened. Use IdentityTheft.gov steps, and keep a short written log (timeline, carrier case number, affected accounts, what each institution told you).
- If you suspect identity misuse beyond the phone number, place a credit freeze or fraud alert. A freeze can help stop many new-account openings while you regain control (you can do this after the phone number is stabilized if you’re overwhelmed).
What can wait
- You don’t need to secure every account today — prioritise carrier + email + banking first.
- You don’t need to decide immediately whether to change your number permanently.
- You don’t need to confront anyone or try to trace the attacker.
- You don’t need to file multiple overlapping reports right now; get the number secured first, then document/report.
Important reassurance
This is frightening, but quick action often prevents the worst outcomes. You’re not overreacting — an unauthorized carrier PIN/security-code change is a meaningful warning sign, and acting fast is the right move.
Scope note
These are first steps to stop immediate harm and regain control. Afterward, you can harden your setup (carrier lock features, moving away from SMS-based verification, and monitoring for identity misuse).
Important note
This is general information, not legal, financial, or professional advice. If money has moved or accounts were taken over, prioritize your carrier and financial institutions first and use official U.S. resources to document and recover.
Additional Resources
- https://consumer.ftc.gov/consumer-alerts/2019/10/sim-swap-scams-how-protect-yourself
- https://www.fcc.gov/consumers/scam-alert/port-out-fraud-targets-your-private-accounts
- https://www.identitytheft.gov/
- https://www.identitytheft.gov/Steps
- https://www.federalregister.gov/documents/2023/12/08/2023-26338/protecting-consumers-from-sim-swap-and-port-out-fraud
- https://www.ctia.org/protecting-against-sim-swap-fraud