- The American cloud company Twilio revealed that the attack on its authenticator app Authy had compromised the phone numbers of 33 million users.
- Hackers have also been able to identify the accounts linked with those phone numbers.
- A notorious hacker group called ShinyHunters is believed to be behind the attack
Twilio, an American cloud communications company, revealed that a data breach on Authy has exposed the phone numbers of millions of users.
Authy (owned by Twilio) is a two-factor authentication app that provides an additional layer of security on top of your passwords.
This news comes just a week after the hacker group, ShinyHunters, announced that they were able to steal 33 million Authy phone numbers. Not only that, but some other unspecified data linked to these user accounts have also been exposed.
At the time, it was unknown whether the hackers could match the numbers with the respective accounts.
ShinyHunters is the same group of hackers that stole data of 560 million Ticketmaster customers in June of this year. The 1.3TB of stolen data, which included customers’ phone numbers, names, and addresses, was put up for sale on the dark web for $500,000.
Snowflake, a cloud-storage provider, was also attacked by ShinyHunters, affecting millions of customers.
Cause & Impact of the Breach
The cause of the breach is said to be an unauthorized endpoint. Twilio assured that the endpoint has now been secured and no unauthenticated requests are being allowed at the moment.
Speaking of the impact, it’s important to note that Authy accounts have not been compromised; only phone numbers have been stolen.
Although your accounts are “technically safe,” the stolen phone numbers can be used to carry out various types of social engineering attacks. Hackers might use the stolen contacts to conduct phishing or smishing invasions.
However, on the brighter side, Twilio’s internal system and other sensitive data have not been compromised.
At the time of writing, there’s nothing much users can do apart from being cautious.
- Do not click on any suspicious links received via text or email.
- Twilio has also requested users to immediately update the Authy app to its latest Android and iOS versions.
Also note: Twilio was last hacked in 2022 when a hacker group tricked its employees into sharing their credentials with the help of voice phishing and then accessed the company’s internal systems.
Our Editorial Process
The Tech Report editorial policy is centered on providing helpful, accurate content that offers real value to our readers. We only work with experienced writers who have specific knowledge in the topics they cover, including latest developments in technology, online privacy, cryptocurrencies, software, and more. Our editorial policy ensures that each topic is researched and curated by our in-house editors. We maintain rigorous journalistic standards, and every article is 100% written by real authors.
Note: This article have been indexed to our site. We do not claim legitimacy, ownership or copyright of any of the content above. To see the article at original source Click Here
Positive Grid Spark NEO Wireless Guitar Headphone Amp & AI-Powered Guitar Rig with Custom Audio Drivers, Noise-Isolation, Bluetooth Streaming & Smart App for Electric, Acoustic and Bass Guitar
$199.00 (as of February 19, 2025 19:35 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
3mm Tiny CZ Screw on Flat Back Stud Earrings,Gold Plated Flat Back Cubic Zirconia Earrings for Helix Cartilage Tragus Earlobe Piercing Jewelry Gift for Women Men(3mm CZ, Gold)
$10.95 (as of February 20, 2025 20:14 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
Citylife 17 QT Plastic Storage Box with Removable Tray Craft Organizers and Storage Clear Storage Container for…
$34.99 (as of February 20, 2025 19:39 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
LEGO Disney Princess Twirling Ariel Toy - Building Toy for Kids, Girls and Boys, Ages 5+ - Little Mermaid Toy for Fans of Movie - Ariel Doll Gift Idea for Birthdays - 43259
$19.99 (as of February 19, 2025 19:35 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
