Phone numbers leaked from the Authy 2FA application or used for SMS phishing

2024-07-04 08:50:04

Collection

ChainCatcher news, according to a report by Cointelegraph, based on a security alert post released by application developer Twilio on July 1, hackers gained access to the Authy Android application database, "able to identify data associated with accounts, including phone numbers."

The post noted that the accounts themselves "were not compromised," meaning that the attackers could not obtain authentication credentials. However, the leaked phone numbers could potentially be used in the future for "phishing and SMS phishing attacks." Therefore, Twilio encourages Authy users to "stay vigilant and be highly alert to any text messages received."

Users of centralized trading platforms typically rely on Authy for two-factor authentication (2FA). It generates a code on the user's device, which the trading platform may require to be entered before executing withdrawals, transfers, or other sensitive tasks.

Authy is sometimes compared to Google's Authenticator app, which has similar functionality.

(Source Link)

Related tags

Authy Twilio SMS phishing

ChainCatcher reminds readers to view blockchain rationally, enhance risk awareness, and be cautious of various virtual token issuances and speculations. All content on this site is solely market information or related party opinions, and does not constitute any form of investment advice. If you find sensitive information in the content, please click "Report", and we will handle it promptly.