Lucy @lucy

**BiyteLüm** @biytelum@mastodon.social · Mar 14

Your phone number is your weakest link.

Hackers use SIM swap attacks to steal your number, reset your accounts, and bypass 2FA. It happens more than you think.

Protect yourself:
Remove your number from important accounts (email, banking)
Use app-based 2FA (Aegis, YubiKey, OTP)—NEVER SMS
Ask your carrier for a port-out PIN

Your phone number shouldn’t be your identity.

#CyberSecurity #SIMSwap #Privacy

Mar 14

**Kevin Karhan** @kkarhan@infosec.space · Mar 4 *

Kevin Karhan @kkarhan@infosec.space

@GossiTheDog the sheer fact that #MSPs & #CSPs can access clients' setups without proper #authorization [including #KYC / #KYB, #AuthCode|s and proper authorization via contract] is already sickening.

This [cyberplace.social] literally begs to be abused via #SocialEngineering / #SocialHacking of #Microsoft personnel or just blatant "#PrivilegueEscalation" through falsefully claiming to be a #MSP / #CSP contracted by the targeted company.

Such fundamental #ITsec fuckups are reasons alone not to use #Azure or any #Microsoft products & services at all...

I mean, it doesn't require #Mitnick-level skills to pull this off, since it doesn't necessitate #Lapsus-Style #SIMswap or other means to gain access...

CyberplaceKevin Beaumont (@GossiTheDog@cyberplace.social)Attached: 3 images This is the partner.microsoft.com portal, it allows CSPs - Cloud Solution Providers - to gain access to their customer's environments. CVE-2024-49035 was around improper privilege management, i.e. being able to access things you shouldn't. It being in CISA KEV says it was being exploited in the wild. That portal allows a huge footprint of access by design.

#mitnick #lapsus #simswap

Mar 4 *

**The New Oil** @thenewoil@mastodon.thenewoil.org · 2025-02-10T18:46:43.000Z

The New Oil @thenewoil@mastodon.thenewoil.org

Hacker pleads guilty to #SIMswap attack on #US #SEC #X account

https://www.bleepingcomputer.com/news/security/hacker-pleads-guilty-to-sim-swap-attack-on-us-sec-x-account/

BleepingComputer · Feb 10Hacker pleads guilty to SIM swap attack on US SEC X account

More from

Sergiu Gatlan

#Twitter #cybersecurity #cybercrime

Feb 11

**BrianKrebs** @briankrebs@infosec.exchange · Nov 21, 2024 *

BrianKrebs @briankrebs@infosec.exchange

Feds Charge Five Men in 'Scattered Spider' Roundup

Federal prosecutors in Los Angeles this week unsealed criminal charges against five men alleged to be members of a hacking group responsible for dozens of cyber intrusions at major U.S. technology companies between 2021 and 2023, including LastPass, MailChimp, Okta, T-Mobile and Twilio.

Two of the accused I've written about extensively already. Today's story looks at how several of these guys were caught. For example:

"The phishing kits used for these campaigns featured a hidden Telegram instant message bot that forwarded any submitted credentials in real-time.

In August 2022, multiple security firms gained access to the server that was receiving data from that Telegram bot, which on several occasions leaked the Telegram ID and handle of its developer, who used the nickname "Joeleoli."

https://krebsonsecurity.com/2024/11/feds-charge-five-men-in-scattered-spider-roundup/

A text-heavy screenshot of a spreadsheet showing a lot of responses to SMS phishing attacks. Many of the responses were from people who knew it was a scam, and submitted data like "fuck.you.spammers" and fake passwords. Below that we can see a large blob of text that describes the various attributes of a Telegram account belonging to a user by the name "Joeleoli." Below Joeleoli's Telegram ID information are redacted responses from actual phishing victims.

#scatteredspider #fbi #simswap

Nov 21, 2024 *

**ChiefGyk3D** @chiefgyk3d@social.chiefgyk3d.com · 2024-05-07T02:10:30.000Z

ChiefGyk3D @chiefgyk3d@social.chiefgyk3d.com

Well this is disturbing, albeit not surprising. https://www.theregister.com/2024/05/07/ransomware_evolves_from_mere_extortion/?td=keepreading

The Register · May 7, 2024Ransomware crooks now SIM swap executives' kids to pressure their parentsBy Jessica Lyons

#Infosec #Cybersecurity #SimSwap

May 14, 2024

**Avoid the Hack!** @avoidthehack@infosec.exchange · 2024-04-15T13:00:00.000Z

Avoid the Hack! @avoidthehack@infosec.exchange

T-Mobile Employees Across The Country Receive Cash Offers To Illegally Swap SIMs

I still stand by this: if #sms #mfa wasn’t still massively used (especially by the financial sector), sim swaps would be less attractive to sim swappers.

It’s also crazy so much trust is placed in telecoms guarding your phone number and MFA factor for your bank.

#security #cybersecurity #simswap

https://tmo.report/2024/04/t-mobile-employees-across-the-country-receive-cash-offers-to-illegally-swap-sims/

The Mobile Report · Apr 15, 2024T-Mobile Employees Across The Country Receive Cash Offers To Illegally Swap SIMsT-Mobile employees, both third-party and corporate, are receiving cash offers via text to complete SIM swaps for criminals.