US SEC blames 'SIM swapping' for its X account hack
The Hindu
Wall Street’s top regulator was the victim of “SIM swapping,” a technique internet fraudsters use to seize control of telephone lines, when its account on the social media platform X, formerly known as Twitter, was hacked earlier this month.
Wall Street's top regulator was the victim of "SIM swapping," a technique internet fraudsters use to seize control of telephone lines, when its account on the social media platform X, formerly known as Twitter, was hacked earlier this month, the U.S. Securities and Exchange Commission said on Monday.
The SEC also said that, six months prior to the attack, staff had removed an added layer of protection, known as multi-factor authentication (MFA), and did not restore it until after the Jan. 9 attack.
As anticipation mounted for the agency's approval of exchange-traded products tracking bitcoin, an unidentified person or persons gained access to the account, posting the false announcement that approval had already been granted, causing a momentary jump in the cryptocurrency's price.
In a split vote, the commission granted approval the following day.
(For top technology news of the day, subscribe to our tech newsletter Today’s Cache)
SIM swapping is a technique in which attackers gain control of a telephone number by having it reassigned to a new device.
"Once in control of the phone number, the unauthorized party reset the password for the @SECGov account," an SEC spokesperson said in a statement.
The Election Commission of India will hold a press conference on June 3, a day before the counting of votes polled in the Lok Sabha polls. Till the 2019 parliamentary polls, deputy election commissioners used to hold media briefings after each phase of polls, but the practice has been done away with.