We prioritize texting you first because it's a safer method to deliver the login code. A text to your phone is not sent over the Internet as your email is. It is much harder and more rare for bad actors to gain access to your cellular text messages.
For example, if you used a password for an old online store and your email account, and that store's data got leaked, someone could use your email and password to try to log into our site. They might even try to reset your password through your email, giving them further access to your account.
In the industry, old emails and domain names are often monitored for deletion or expiration. For instance, if you had an old Gmail email linked to our records but didn't use it for a year, Google might delete that email, allowing someone else to register and utilize it.
The same applies to an expired domain. Let's say your email was firstname.lastname@example.org, and you let mygreatdomain.com expire; anyone could register it, recreate your previous email, and gain full access to it.
That's why we use a second layer of security called MFA (Multi-Factor Authentication). Instead of sending the login code to your compromised email, we send it as a text message to your phone.
If your phone can't receive texts, don't worry. We offer the option to receive the code by email, either to your backup or main email.
If it is a bad actor trying to access your account, you will still receive the text message before they can try the secondary method of email, so you'll know if someone is trying to access your account. Just contact our customer service team to secure your account immediately.
We understand this new process might feel inconvenient, but it's becoming more common for security reasons. As a provider of important services like your online presence, domain name, email, and website, we prioritize keeping your account safe.