Study finds five major US carriers vulnerable to SIM-swapping tactics

That kind of SIM-swapping technique could be used by attackers to gain control of a victim’s phone number. They can then use that number to reset the victim’s passwords and access, say, their emails and bank accounts.

To test the carriers’ security measures, they called the companies to request for a SIM swap and intentionally provided the wrong PIN number to force the customer service rep to try another authentication method. When asked for the account holder’s date of birth or billing ZIP code, they’d say that they must’ve made a mistake upon signup and provided the wrong information.

The customer service rep would then have to move to a third type of authentication method, which is asking the caller for their two most recently made calls. It was through this method that the researchers were successfully able to complete the SIM swaps. And that’s alarming, since attackers can easily trick victims into calling random phone numbers.

Princeton University

In addition, the researchers examined 140 popular online sites and services that use phone authentication to see what attackers can do with the numbers they hijack. They were easily able to reset passwords on 17 of those services using only the hijacked SIMs, since they weren’t asked additional authentication questions.

The Princeton researchers provided a copy of their findings to the carriers last year, and T-Mobile notified them this month that it doesn’t use call logs as a form of authentication anymore. We’ve reached out to the other four carriers for a statement.

About the author

E-Crypto News was developed to assist all cryptocurrency investors in developing profitable cryptocurrency portfolios through the provision of timely and much-needed information. Investments in cryptocurrency require a level of detail, sensitivity, and accuracy that isn’t required in any other market and as such, we’ve developed our databases to help fill in information gaps.

Related Posts

E-Crypto News Executive Interviews

Automated trading with HaasBot Crypto Trading Bots

Crypto Scams

Millions in Cryptocurrency Stolen by Scammers in the Last Month According to Tenable Research
November 24, 2021
Behind The Scenes: How this Crypto Community Responded to + $50m Hack
October 18, 2021
Crypto Scams
Crypto Scams Still Persistent In 2021, SEC Warns About Red Flags To Watch
September 9, 2021
Poly Network
Here’s How Hackers Stole Over $600 million in the Poly Network Attack
August 12, 2021
The World’s Most Infamous Crypto Hacks and Scams
July 31, 2021

Blockchain/Cryptocurrency Questions and Answers

GamStop
How Does Bitcoin Casino Work + 2021 Beginner’s Guide
November 8, 2021
Cryptocurrency
How to Buy and Sell Cryptocurrency
November 8, 2021
What Are Bitcoin Futures And How Will They Work In 2022?
November 4, 2021
Ethereum
The Unconventional Guide to Ethereum
October 28, 2021
ICo Presale
The Science Behind ICO Presales…
October 14, 2021


CryptoCurrencyUSDChange 1hChange 24hChange 7d
Bitcoin36,960 2.72 % 0.59 % 12.82 %
Ethereum2,503.7 4.77 % 2.19 % 20.93 %
Tether0.9964 0.29 % 0.30 % 0.36 %
Binance Coin377.70 4.03 % 1.09 % 19.94 %
USD Coin0.9991 0.15 % 0.04 % 0.05 %
Cardano1.090 4.63 % 4.19 % 26.20 %
XRP0.6291 3.58 % 3.41 % 16.41 %
Solana93.89 6.78 % 0.40 % 33.71 %
--- --- --- ---
Polkadot18.19 0.55 % 0.92 % 27.58 %

bitcoin
Bitcoin (BTC) $ 37,051.00
ethereum
Ethereum (ETH) $ 2,514.57
tether
Tether (USDT) $ 0.998414
binance-coin
Binance Coin (BNB) $ 377.32
usd-coin
USD Coin (USDC) $ 1.00
cardano
Cardano (ADA) $ 1.09
xrp
XRP (XRP) $ 0.624687
solana
Solana (SOL) $ 94.20
terra-luna
Terra (LUNA) $ 61.14
polkadot
Polkadot (DOT) $ 18.40