tldrdaily.news logo
Tag

Sim Swapping Attack

All articles tagged with #sim swapping attack

cybersecurity2 years ago

SEC Acknowledges Cybersecurity Failure in Bitcoin-Related Hack

The US Securities and Exchange Commission (SEC) admitted that a key security procedure, multi-factor authentication (MFA), had been suspended for six months on its social media account when hackers made a fake post about Bitcoin in January. This allowed hackers to gain access to the account and make the misleading post, causing the cryptocurrency to surge in value before the post was deleted. The SEC has since confirmed the regulatory change, but the incident highlights the importance of maintaining strong cybersecurity measures, especially in government agencies, to prevent similar attacks.

via BBC.com|
#bitcoin#cyber-security#cybersecurity
cybersecurity2 years ago

"SEC's Fake Bitcoin Post Linked to SIM-Swapping Attack"

The Securities and Exchange Commission revealed that a SIM-swapping attack was responsible for the breach of its account, leading to the creation of a fake post about Bitcoin ETF approval. The attacker gained control of the SEC's phone number associated with the account, allowing them to reset the account's password and make the fake post. Despite previously having multifactor authentication enabled, it was disabled due to access issues, and only reenabled after the breach was discovered. Law enforcement is investigating how the attacker obtained the SEC's phone number and convinced the mobile carrier to swap SIMs.

via The Verge|
#bitcoin#cryptocurrency#cybersecurity
cybersecurity2 years ago

"SEC Confirms SIM Swapping Attack on X Account"

The U.S. Securities and Exchange Commission confirmed that its account was hacked through a SIM-swapping attack, allowing hackers to issue a fake announcement about Bitcoin ETF approval. The attackers tricked the SEC's mobile carrier into porting the phone number to a device under their control, gaining access to the account. The SEC confirmed that multi-factor authentication was not enabled on the account, and advises using hardware security keys or authentication apps instead of SMS for MFA. This incident adds to a series of hacked accounts and malicious advertisements targeting cryptocurrency-related entities.

via BleepingComputer|
#cryptocurrency#cybersecurity#hacking