Even with considerable security precautions in place, Twitter CEO Jack Dorsey became the victim of an embarrassing compromise when attackers took control of his account on the platform by hijacking his telephone number.
Dorsey became the latest target of so-called “SIM swap” fraud, which enables a fraudster to trick a mobile carrier into transferring a number — potentially causing people to lose control not only of social media, but bank accounts and other sensitive information.
This type of attack targets a weakness in “two-factor authentication” via text message to validate access to an account, which has become a popular break-in method in the past few years.
Twitter on Friday last week said that the account was restored after a brief time in which the attackers posted a series of offensive tweets.
However, Ori Eisen, founder of Arizona-based security firm Trusona, which specializes in authentication without passwords, said that the rapid fix should not be seen as an answer to the broad problem of SIM card swap fraud.
“The problem is not over,” Eisen said, adding that these kinds of attacks have been used to take over other high-profile social media accounts and for various kinds of fraud schemes.
It was not clear how many people are attacked in this manner, Eisen said, but added that automated technology could create billions of calls that lure people into giving up information or passwords.
Some analysts have said that hackers have found ways to easily get enough information to get a telecom to transfer a number to a fraudster’s account, especially after hacks of large databases that result in personal data sold on the so-called “dark Web.”
“Mobile accounts’ text messages can be hijacked by sophisticated hardware techniques, but also by so-called ‘social engineering’ — convincing a mobile provider to migrate your account to another, unauthorized phone,” said R. David Edelman, a former White House adviser who heads a cybersecurity research center at the Massachusetts Institute of Technology. “It only takes a few minutes of confusion to make mischief like Dorsey experienced.”
Thousands of these attacks have been reported in countries where mobile payments are common, including in Brazil, Mozambique, India and Spain.
Researchers at security firm Kaspersky have said that security systems by many mobile operators “are weak and leave customers open to SIM swap attacks,” especially if the attackers are able to gather information such as birth dates.
In a blogpost, Kaspersky researchers Fabio Assolini and Andre Tenreiro said that some cases come from cybercriminals paying off corrupt employees of mobile carriers — for as little as US$10 to US$15 per victim.
“The interest in such attacks is so great among cybercriminals that some of them decided to sell it as a service to others,” they wrote.
In Brazil, some criminals have taken over victims’ WhatsApp accounts, using it to ask the person’s friends for “urgent payment,” they added.
The collapse of the Swiss Birch glacier serves as a chilling warning of the escalating dangers faced by communities worldwide living under the shadow of fragile ice, particularly in Asia, experts said. Footage of the collapse on Wednesday showed a huge cloud of ice and rubble hurtling down the mountainside into the hamlet of Blatten. Swiss Development Cooperation disaster risk reduction adviser Ali Neumann said that while the role of climate change in the case of Blatten “still needs to be investigated,” the wider impacts were clear on the cryosphere — the part of the world covered by frozen water. “Climate change and
Poland is set to hold a presidential runoff election today between two candidates offering starkly different visions for the country’s future. The winner would succeed Polish President Andrzej Duda, a conservative who is finishing his second and final term. The outcome would determine whether Poland embraces a nationalist populist trajectory or pivots more fully toward liberal, pro-European policies. An exit poll by Ipsos would be released when polls close today at 9pm local time, with a margin of error of plus or minus 2 percentage points. Final results are expected tomorrow. Whoever wins can be expected to either help or hinder the
DENIAL: Musk said that the ‘New York Times was lying their ass off,’ after it reported he used so much drugs that he developed bladder problems Elon Musk on Saturday denied a report that he used ketamine and other drugs extensively last year on the US presidential campaign trail. The New York Times on Friday reported that the billionaire adviser to US President Donald Trump used so much ketamine, a powerful anesthetic, that he developed bladder problems. The newspaper said the world’s richest person also took ecstasy and mushrooms, and traveled with a pill box last year, adding that it was not known whether Musk also took drugs while heading the so-called US Department of Government Efficiency (DOGE) after Trump took power in January. In a
It turns out that looming collision between our Milky Way and Andromeda galaxies might not happen after all. Astronomers on Monday said that the probability of the two spiral galaxies colliding is less than previously thought, with a 50-50 chance within the next 10 billion years. That is essentially a coin flip, but still better odds than previous estimates and farther out in time. “As it stands, proclamations of the impending demise of our galaxy seem greatly exaggerated,” the Finnish-led team wrote in a study appearing in Nature Astronomy. While good news for the Milky Way galaxy, the latest forecast might be moot
RSS