Hackers abused API to verify millions of Authy MFA phone numbers

Twilio has confirmed that an unsecured API endpoint allowed threat actors to verify the phone numbers of millions of Authy multi-factor authentication users, potentially making them vulnerable to SMS phishing and SIM swapping attacks. [...] Read More

July 3, 2024 1 minute read

Twilio has confirmed that an unsecured API endpoint allowed threat actors to verify the phone numbers of millions of Authy multi-factor authentication users, potentially making them vulnerable to SMS phishing and SIM swapping attacks. […] Read More

About The Author

See author's posts

Related Stories

Hackers Accessed University of Hawaii Cancer Center Patient Data; They Weren’t Immediately Notified

Instagram denies breach amid claims of 17 million account data leak

Microsoft is retiring ‘Send to Kindle’ in Word