A phone-based attack, also known as a SIM-swap or phone-port attack, involves an attacker gaining control of their target's phone number by transferring it to a mobile device under their control. This can be achieved through identity theft or social engineering mobile carrier Customer Support representatives. Any account using SMS-based 2-step verification or that can be recovered using phone-based authentication is vulnerable to this type of attack.
To prevent a phone-based attack on your Kauri.Finance account, it is highly recommended that you use a stronger form of 2-step verification. This can include 2FA with a security key or time-based One Time Password with a mobile authenticator app like Duo or Google Authenticator.