Skip to content
/ two-factor-authentication-sim-swapping Public

An adversary may utilize a sim swapping attack for defeating 2fa authentication

License

AGPL-3.0 license
11 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

qeeqbox/two-factor-authentication-sim-swapping

BranchesTags

Repository files navigation

An adversary may utilize a sim swapping attack for defeating 2fa authentication.

Example #1

  1. Adversary steals the username and password pair for website
  2. Adversary compromises the victim's phone (convinces cell phone provider to swap victim's phone number with a different sim they own)
  3. Adversary logs in with the stolen username and password
  4. Adversary receives a pin code on the compromised phone and uses it for verification.

Impact

High

Risk

  • gain unauthorized access

Redemption

  • use more factors

ID

58a84977-90e1-4156-a555-8568e83115d0

References

  • howtogeek

About

An adversary may utilize a sim swapping attack for defeating 2fa authentication

Topics

visualization metadata example vulnerability sim 2fa swapping qeeqbox infosecsimplified

Resources

Readme

License

AGPL-3.0 license

Code of conduct

Code of conduct
Activity
Custom properties

Stars

11 stars

Watchers

2 watching

Forks

2 forks
Report repository

Sponsor this project

 
Learn more about GitHub Sponsors