all InfoSec News logo
all InfoSec News - Your InfoSec news aggregator
Log in Sign up
all InfoSec News

Hackers Abused Twilio API To Verify Phone Numbers used For MFA

Add to bookmarks
July 5, 2024, 3:07 a.m. | Raga Varshini

GBHackers On Security gbhackers.com

An unauthenticated endpoint vulnerability allowed threat actors to identify phone numbers associated with Authy accounts, which was identified, and the endpoint has been secured to prevent unauthorized access.  No evidence suggests the attackers gained access to internal systems or other sensitive data, but as a precaution, it’s crucial to implement additional security measures to mitigate […]


The post Hackers Abused Twilio API To Verify Phone Numbers used For MFA appeared first on GBHackers on Security | #1 Globally …

access accounts api attackers authy authy update cve cyber-attack data email security endpoint evidence hackers identify internal mfa mfa vulnerability numbers phone phone numbers prevent sensitive sensitive data systems threat threat actors twilio twilio security unauthenticated unauthorized unauthorized access verify vulnerability

Visit resource

More from gbhackers.com / GBHackers On Security

The Problem With Bug Bounties 1 day, 16 hours ago | gbhackers.com
article bounties bug bug bounties +13
Cloudflare Details 1.1.1.1 Service Outage Incident 2 days, 14 hours ago | gbhackers.com
1.1.1 1.1.1.1 bgp border +19
Mekotio Banking Trojan Attacking American Users To Steal Financial Data 2 days, 14 hours ago | gbhackers.com
american banking banking trojan brazil +20
Kimusk’s HappyDoor Executed Via regsvr32 File To Evade Detection 2 days, 14 hours ago | gbhackers.com
advanced change countries cyber +26
Hackers Compromised Ethereum’s Mailing List to Drain Their Crypto Funds 2 days, 16 hours ago | gbhackers.com
action attack breach campaign +20
Threat Actor Claiming 2FA Bypass Vulnerability in HackerOne Bug Bounty Platform 2 days, 19 hours ago | gbhackers.com
2fa 2fa bypass account actor +19
Hackers Abused Twilio API To Verify Phone Numbers used For MFA 2 days, 22 hours ago | gbhackers.com
access accounts api attackers +29
New ‘Pryx’ Ransomware Hijacked 30,000 University Applications 3 days, 17 hours ago | gbhackers.com
announcement applications attack college +18
FakeBat Malware Weaponizing AnyDesk, Zoom, Teams & Chrome 3 days, 18 hours ago | gbhackers.com
access anydesk applications chrome +16

Jobs in InfoSec / Cybersecurity

Find Talent

Principal Architect - LINUX - Active Top Secret Required

@ General Dynamics Information Technology | USA DC Washington - Customer Proprietary (DCC076)
View on infosec-jobs.com

Expert SOAR (CORTEX)

@ Alter Solutions | PARIS, France
View on infosec-jobs.com

Program Management Analyst

@ Peraton | Arlington, VA, United States
View on infosec-jobs.com

Gestion des menaces et des vulnérabilités

@ Alter Solutions | Paris, France
View on infosec-jobs.com

Senior IAM Security Engineer

@ WEX | Brazil - Remote Office
View on infosec-jobs.com

Senior Information Security Engineer

@ Ameriprise Financial Services | 11071 Ameriprise India - Hyderabad
View on infosec-jobs.com