π΄ Website π https://u-s-news.com/
Telegram π https://t.me/usnewscom_channel
OAN StaffΒ Blake Wolf
5:55 PM β Thursday, December 19, 2024
Following a massive telecom breach, Apple and Android users are being urged to restrain from receiving two-factor authentication codes through text, risking exposure of non-encrypted messages by suspected Chinese hackers.
Advertisement
The Cybersecurity and Infrastructure Security Agency (CISA) released a memo on Wednesday responding to the threat, instructing people to not utilize SMS as a second factor authentication method for online accounts.
βSMS messages are not encrypted β a threat actor with access to a telecommunication providerβs network who intercepts these messages can read them,β CISA stated.
The FBI urged smartphone users to use encrypted messaging apps like Signal or WhatsApp earlier this month after suspected Chinese hackers gained access to AT&T, T-Mobile, Verizon, and five other networks in order to snoop on certain service users.
Apps like WhatsApp, Appleβs iMessage, and Signal all provide an extra layer of security as they are all end-to-end encrypted, meaning the messages canβt be monitored by potential hackers, or the companies themselves.
βSMS messages are not encrypted β a threat actor with access to a telecommunication providerβs network who intercepts these messages can read them,β CISA stated.
The efforts of the hacker group, known as βSalt Typhoon,β which U.S. officials say is being run by the Chinese Government, is reportedly βongoing and likely larger in scale than previously understood,β according to experts.
Jeff Greene, the executive assistant director for cybersecurity at the Cybersecurity and Infrastructure Security Agency, stated that the Salt Typhoon compromise βis part of a broader pattern of PRC activity directed at critical infrastructure.β
βWe cannot say with certainty that the adversary has been evicted,β Greene continued. βThis is ongoing PRC activity that we need to both prepare for and defend against for the long term.β
βWeβre on top of tracking them down β¦ but we cannot with confidence say that we know everything, nor would our partners,β he added.
The agency advised consumers to utilize alternate two-factor authentication methods wherever feasible to reduce the danger of hacking, even though some online services might not offer them. Additionally, they suggested utilizing a password manager, creating strong passwords, setting up a PIN whenever feasible, and updating personal devices.
Stay informed! Receive breaking news blasts directly to your inbox for free. Subscribe here.Β https://www.oann.com/alerts
Advertisements below