As the balance on my Alby Hub increases and especially as I think about using the family and friends feature I have been thinking more about the security of my funds and my Alby account.

I am happy with the security of the Alby Hub itself however it seems to me that the weakest link is through the Get Alby account and the LND Hub credentials.

Anyone with access to my email would be able to log in to my Alby account with a one time login code.
Once they have access to my Alby account they would be able to generate new LND hub credentials and with this drain the full balance of my Hub.

This to me seems like a security concern and there is nowhere else that I would have a potentially significant amount of bitcoin secured only by access to my email account.

To help resolve this I think it would be great if we were able to either secure our entire Alby account or at least secure the ability to generate new LND Hub credentials with TOTP 2FA. That would give me comfort in knowing that if my email was compromised I would not immediately be at risk of losing all of the funds in my AlbyHub.

It may also be possible or beneficial to give users the option to disable the LND Hub Credentials altogether especially given that our connection needs can now be met by NWC connections created directly in the Hub.