Home » Cryptocurrency Basics » What Happens if I Lose My Device With 2FA on it?

What Happens if I Lose My Device With 2FA on it?

If your device with 2FA (two factor authentication) is lost, broken, or stolen, you should and most likely have to change your passwords, set up 2FA again, and get new verification codes.^[1]

In other words, you should and most likely have to start from scratch again due to the way 2FA works (although you can use the same email).

You should because you compromise your security when you lose your device (because 2FA functions on a device, even without the internet).

You have to in some cases because, without backup codes for every account, there is no way to recover your 2FA.

TIP: It isn’t enough to just have one backup code, for example, the backup codes you get when you set up Google 2FA. To fully recover your 2FA, you need to have the backup codes of each account you set up 2FA on. This code is a security token that is a string of numbers and letters and/or a QR code. It is the code you use to set up your 2FA when you turn it on for a given account.

Given the above, it can be smart to always install 2FA on more than one device (you can export each account with Google Authenticator to do this, for example), to save the backup codes you get when you set up your 2FA, or to use a service that lets you securely store your codes in the cloud (for example Google Authenticator offers cloud-based backups). All of these tactics will help speed up the process if a device is lost, broken, or stolen. Although remember, if it’s stolen or lost, you should start from scratch since someone might have access to your codes.

With the above in mind, recovery is easier with some 2FA types than others. There are basically two different types of authenticators. Those that you can’t recover if you lose your device, and those encrypted on a cloud that you can.

If you can recover your 2FA, then you can go through the recovery steps.

With 2FA, however, part of the security comes from the 2FA app being device-specific. Given this, some 2FA options won’t offer cloud-based backup. For these, the only way to add the same 2FA with the same codes to another device is to have your backup codes or to back up your codes.

When you first generate your 2FA you get a security token / QR code you can use to create your 2FA, and you get backup codes. You’ll want to save both of these for account recovery (and yes, that means taking a screenshot of the QR code to use later).

Further, every time you set up 2FA on another account, you get a security token / QR code and often backup codes which you can save for account recovery later.

If you have saved all of these, either when created or via exporting them, you can use the tokens and backup codes to re-create your 2FA. If you didn’t, you can’t.

Also, you can transfer your codes to a new device, for example, you can transfer your Google Authenticator codes. This is one way to have more than one device with the same codes.

With that said, as noted already, if you lost your phone or had it stolen, you compromised your security… and that means you should set up new 2FA on all your accounts anyway.

Still, having the backup codes/keys can make that process easier, as you won’t have to contact support for every platform with 2FA to have it reset. You can reset it yourself.

Even better, if you have 2FA on more than one device, you can quickly switch everything to a new 2FA after losing your device without having to deal with backup codes.

TIP: Especially with device-specific 2FA, where your info isn’t recoverable via a cloud-based service, the most important part of account recovery isn’t your main 2FA account. It is the security tokens / QR codes / backup codes you get when you set up 2FA on a given account. You can actually use those codes to access your accounts with 2FA on them, even if you can’t recover your main account. So, for example, if you have Google 2FA and then use it to put 2FA on Facebook, it is the Facebook security token that is the most important code to store for account recovery. Still, if you want to get everything back just the way it was, it makes sense to save all your tokens and codes for your main 2FA account too.

TIP: Always store important information offline in a secure format. For example, an encrypted USB drive is a good tool for storing important information like security tokens offline. You can even disconnect from the internet when you connect it to your computer for extra security.

Article Citations

Common issues with 2-Step Verification. Support.Google.com.

Author: Thomas DeMichele

Thomas DeMichele has been working in the cryptocurrency information space since 2015 when CryptocurrencyFacts.com was created. He has contributed to MakerDAO, Alpha Bot (the number one crypto bot on Discord),...

Thomas DeMichele's Full Bio

Trade Bitcoin For Free at Binance.US with our Referral Link: Trade Bitcoin for free for a limited time on Binance.US. Plus get a $10 welcome bonus and 25% off trading fees by using BNB to trade. Binance has staking and offers a high APY!

Save 10% on Binance Trading Fees with referral code EM8AAVDR: Use our referral link to sign up for Binance and save 10% on trading fees for life. You can also save an additional 25% by using BNB to trade. See a review of the Binance referral program.

Get $10 in Bitcoin after you buy or sell $100 with our Coinbase referral link. Earn even more on Coinbase earn!

Save up to 10% on fees at GMX with referral code CCFacts.

Save 20% on OKX Fees with referral code CCFACTS.

Trade Bitcoin for Free, use leverage, and get all current welcome bonuses at Bybit with referral code CCFsignup.

NOTE: We are a US-based company. Our referral partner, HowtoReferral.com, provides referral links for exchanges prohibited in the US. All referral links are checked regularly. Please see our about page for details.

The content of this website is provided for informational purposes only and can’t be used as investment advice, legal advice, tax advice, medical advice, advice on operating heavy machinery, etc. Our site is not officially associated with any brand or government entity. Any mention of a brand or other trademarked entity is for the purposes of education, entertainment, or parody. Neither CryptocurrencyFacts.com nor its parent companies accept responsibility for any loss, damage, or inconvenience caused as a result of reliance on information published on or linked to from CryptocurrencyFacts.com. In other words, this is a website on the internet offering free information about cryptocurrency. This is not your accountant, lawyer, or fiduciary offering you professional tax, legal, or investment advice. See our about page, legal and privacy page, and cookie policy for more disclaimers and information. ₿♦️🦄 🐕 🪨

Coinbase Disclaimer: Personalized reward offer is displayed after account creation. Limited time offer and while supplies last. Offer available to new users who have not previously verified their identification. Offer not available to new users who were referred to Coinbase through the Referral Program or who have previously opened an account using different contact information. Coinbase may update the conditions for eligibility at any time, in its sole discretion. See Terms and Conditions.