As I wrote before in my book, you should try to avoid using text messages as a form of Multi-Factor-Authentication (MFA) wherever you can. But unfortunately, sometimes you don’t have a choice.
Today, I will show you another way where hackers can compromise text message MFA. Then I will explain what you need to do to prevent this attack from happening.
This type of attack is most effective when performed overnight while you are asleep. This is how it happens:
- The hacker knows your password and attempts to log into your account.
- He is required to authenticate with a one-time password (OTP) sent via text message to your phone.
Subscribe to continue reading
Become a paid subscriber to get access to the rest of this post and other exclusive content.