Hackers abused API to verify millions of Authy MFA phone numbers (www.bleepingcomputer.com)

submitted 1 week ago by [email protected] to c/[email protected]

0 comments fedilink hide all child comments

Twilio has confirmed that an unsecured API endpoint allowed threat actors to verify the phone numbers of millions of Authy multi-factor authentication users, potentially making them vulnerable to SMS phishing and SIM swapping attacks. [...]

no comments (yet)

sorted by: hot top controversial new old

there doesn't seem to be anything here

this post was submitted on 03 Jul 2024

25 points (96.3% liked)

Pulse of Truth

273 readers

99 users here now

Cyber Security news and links to cyber security stories that could make you go hmmm. The content is exactly as it is consumed through RSS feeds and wont be edited (except for the occasional encoding errors).

This community is automagically fed by an instance of Dittybopper.

founded 8 months ago

MODERATORS

[email protected]