Hackers Abused Twilio API To Verify Phone Numbers used For MFA

5 July 2024

An unauthenticated endpoint vulnerability allowed threat actors to identify phone numbers associated with Authy accounts, which was identified, and the endpoint has been secured to prevent unauthorized access. No evidence suggests the attackers gained access to internal systems or other sensitive data, but as a precaution, it’s crucial to implement additional security measures to mitigate potential phishing attacks that could exploit the leaked phone numbers. Join our webinar to learn about combating slow DDoS attacks, a major threat today.

Source: GBHackers

Date:

5 July 2024

Categorie(s):

NEWS

Tag(s):

Cyber Attack, Cyber Threats, Email Security, Hacking, MFA

Will passkeys ever replace passwords? Can they?17 November 2024
How Ransomware Jeopardizes Healthcare Organizations17 November 2024
Are Identity Theft Protection Services Worth the Money? It’s Complicated17 November 2024
Week in review: Microsoft patches actively exploited 0-days, Amazon and HSBC employee data leaked17 November 2024
Google’s Gemini AI Chatbot Keeps Telling Users to Die16 November 2024