|Recommended Configuration||Proprietary; Email; SMS|
|Alternate Configuration 1|
|Alternate Configuration 2|
|Alternate Configuration 3|
|Account/Password Recovery||PR SMS; PR email|
|Remarks||automatic SMS backup signup using phone number on file; automatic email backup signup using email on file; proprietary app can be disabled with SMS|
Notified on January 11, 2020.
Received response on January 15, 2020; response comprised of a template acknowledgement.
Silently fixed vulnerability without notifying us as of March 8, 2020; this page represents our original findings.