Ddos 
Twilio disclosed last week that the threat actors managed to gain access to the accounts of 93 individual users of its Authy two-factor authentication (2FA) service.
According to an announcement released by Authy developer Twilio, the Authy developer’s mobile phone number was leaked from somewhere. The hacker pretended to be the IT department and sent a phishing text message to the engineer.
Twilio noted its investigation as of August 24, 2022, turned up 163 affected customers, up from 125 it reported on August 10, whose accounts it said were hacked for a limited period of time.
Authy supports multi-device synchronization and simultaneous login. Hackers use user information to add additional login devices to obtain all the multi-factor verification codes of the target account.
Support Our Threat Intelligence
If you find our CVE report and cybersecurity news helpful, consider supporting our work.
Buy Me a Coffee
PayPal
