Always use app based 2FA whenever possible. SMS 2FA is a security vulnerability, not a benefit, imo.

I use OTP auth and really like it

Happened to me years back with Coinbase. It was wild. Nothing confuses a cell company more than a sim swap.

YubiKey for financial, andOTP is good (or BitWarden with built-in in OTPs)

Happy to find out today that Mint supports Yubikey

yubikey