What it feels like to lose control of your entire digital identity
Hojt Communication is a consulting company focused on our clients need to rapidly bring the right product to the right market. We stand out due to our ability to combine skills in strategy, implementation, operations and technology with deep understanding about the connected world and the new levels of security and privacy protection that world brings.
vision,strategy,product,market,business development,marketing,mobility,Internet of Things,IoT,Security
post-template-default,single,single-post,postid-22727,single-format-standard,stockholm-core-2.4.3,select-child-theme-ver-1.0.0,select-theme-ver-9.9,ajax_fade,page_not_loaded,,qode_menu_,wpb-js-composer js-comp-ver-7.6,vc_responsive

What it feels like to lose control of your entire digital identity

See on Scoop.itSecure communication

When someone takes over your accounts, it’s hard to get them back.

Two (or multi) -factor authentication is the best way to go for protecting accounts. But it must be implemented correctly. If an account is ties to a phone number, like in this case, the second factor must NOT be tied to the same number. In this case the verification code was sent in an SMS that, of course, is ties to the compromised phone number.

The correct implementation is using another channel for the authentication, for example Google Authenticator or similar. If this had been used it would not have been enough with compromising the phone number. The hacker must have access to the actual phone, and that would prevent simple hacks like described in this post.

See on dailydot.com