Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


SunTiger

25 posts

Geek


#199135 5-Aug-2016 18:24
Send private message

Recently there has been some talk regarding people getting their email accounts hacked even though they are using 2FA. This was achieved by the attacker impersonating the victim by calling the victim's mobile provider and getting a replacement sim sent to the attacker, giving the attacker access to the victim's phone (and therefore access to their 2FA).

 

It has been recommended that we get a second (cheap) cellphone with a seperate sim card not linked to our identity to avoid this - does anyone have any experience with this, is it necessary or excessive?

 

By the way I've tried searching for this topic already using the Search function but the search function doesn't seem to be working (see screenshot), cheers

 

 

 

Click to see full size


Create new topic
RunningMan
8953 posts

Uber Geek


  #1605158 5-Aug-2016 18:26
Send private message

Turn your adblocker off. Search will then work.




richms
28168 posts

Uber Geek

Trusted
Lifetime subscriber

  #1605162 5-Aug-2016 18:38
Send private message

I have a seperate phone for 2 factor now. Friend had a work phone ported to some other sim card. Telco didnt seem to care and just put it back on the right sim card. All you need to port to a prepay sim is the number and account number when I last did it, 2 things people do not really keep that closely guarded.





Richard rich.ms

freitasm
BDFL - Memuneh
79254 posts

Uber Geek

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #1605164 5-Aug-2016 18:44
Send private message

I personally try to use an authenticator app - Authy is good as it syncs between platforms (mobile and desktop). LastPass is offering this now as well. 

 

For those few services that want to use a mobile for authentication I try using a non-NZ number I have (Google Voice) where possible.





Please support Geekzone by subscribing, or using one of our referral links: Samsung | AliExpress | Wise | Sharesies | Hatch | GoodSyncBackblaze backup




Sam91
620 posts

Ultimate Geek


  #1605177 5-Aug-2016 19:03
Send private message

Are you referring to what's happening in the Youtube community? Popular Youtube Channels are being hacked using this method.

Example:




richms
28168 posts

Uber Geek

Trusted
Lifetime subscriber

  #1605178 5-Aug-2016 19:08
Send private message

Yes, Telcos do not take security seriously so any prick can bluff their way into getting a sim swap or else you can just do a port to 2degrees with only the phone num and account number for on account, or phone and sim number for prepaid.

 

I used to have a spreadsheet of sims to keep track of when I need to top each one up to keep it alive, stopped that since its all that is needed to steal the numbers.





Richard rich.ms

Create new topic





News and reviews »

Air New Zealand Starts AI adoption with OpenAI
Posted 24-Jul-2025 16:00


eero Pro 7 Review
Posted 23-Jul-2025 12:07


BeeStation Plus Review
Posted 21-Jul-2025 14:21


eero Unveils New Wi-Fi 7 Products in New Zealand
Posted 21-Jul-2025 00:01


WiZ Introduces HDMI Sync Box and other Light Devices
Posted 20-Jul-2025 17:32


RedShield Enhances DDoS and Bot Attack Protection
Posted 20-Jul-2025 17:26


Seagate Ships 30TB Drives
Posted 17-Jul-2025 11:24


Oclean AirPump A10 Water Flosser Review
Posted 13-Jul-2025 11:05


Samsung Galaxy Z Fold7: Raising the Bar for Smartphones
Posted 10-Jul-2025 02:01


Samsung Galaxy Z Flip7 Brings New Edge-To-Edge FlexWindow
Posted 10-Jul-2025 02:01


Epson Launches New AM-C550Z WorkForce Enterprise printer
Posted 9-Jul-2025 18:22


Samsung Releases Smart Monitor M9
Posted 9-Jul-2025 17:46


Nearly Half of Older Kiwis Still Write their Passwords on Paper
Posted 9-Jul-2025 08:42


D-Link 4G+ Cat6 Wi-Fi 6 DWR-933M Mobile Hotspot Review
Posted 1-Jul-2025 11:34


Oppo A5 Series Launches With New Levels of Durability
Posted 30-Jun-2025 10:15









Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.