I was shocked to see this video, especially since the attacker only needs a phone number to intercept calls and text messages, as well as locate the victim. Many things we assume to be secure are actually not safe. Not to mention SMS-based 2FA, even services like Signal require users to provide a phone number during registration.
pull down to refresh
0 sats \ 0 replies \ @DEADBEEF 15 Dec
The phone system is insecure by design and has been forever.
Signal System 7 (SS7) was designed in the 1980’s and defines how telecommunications are switched worldwide. The mobile protocols MAP and CAMEL operate without authentication.
https://www.grc.com/sn/sn-556-notes.pdf
https://arstechnica.com/information-technology/2016/04/how-hackers-eavesdropped-on-a-us-congressman-using-only-his-phone-number/
reply
0 sats \ 0 replies \ @Rothbardian_fanatic 15 Dec
You didn’t know the phone system was pretty bereft of security. It has never been secure, even landlines, let alone wireless. Too bad there is no good encryption for cell phones.
reply