The meta site login was sending an initial 2FA code to my email, which I received, but then it would attempt to send a second code to my phone number. This struck me as unusual, as even banking websites typically don't use double 2FA.

The problem was that I wasn't receiving the SMS code on my phone. After speaking with two separate customer service representatives, they both said they needed to transfer my case for further review.

However, I eventually discovered that the SMS messages had been going to my spam folder for about two months. This simple solution resolved the issue.

I'm disappointed that the customer service representatives didn't suggest checking my spam folder before escalating the case to another support team. It seems like such a basic troubleshooting step that should have been offered from the start.