8 months ago
The U.S. Securities and Exchange Commission (SEC) has admitted that a SIM swap onslaught compromised its X account, wherever a fake announcement astir the support of spot bitcoin exchange-traded funds (ETFs) was posted. “The unauthorized enactment obtained power of the SEC compartment telephone fig associated with the relationship successful an evident ‘SIM swap’ attack,” the regulator said.
SEC Says It’s a Victim of a SIM Swap Attack
The U.S. Securities and Exchange Commission (SEC) provided an update connected Monday regarding the unauthorized entree of its @SECGov relationship connected societal media level X. The onslaught occurred connected Jan. 9 and the SEC’s X relationship was utilized to station an unauthorized connection claiming the bureau had approved spot bitcoin exchange-traded funds (ETFs). Notably, the bureau had not approved spot bitcoin ETFs astatine that time.
The securities regulator detailed:
Two days aft the incident, successful consultation with the SEC’s telecom carrier, the SEC determined that the unauthorized enactment obtained power of the SEC compartment telephone fig associated with the relationship successful an evident ‘SIM swap’ attack.
“Once successful power of the telephone number, the unauthorized enactment reset the password for the @SECGov account,” the SEC described. The regulator stressed: “Access to the telephone fig occurred via the telecom carrier, not via SEC systems. SEC unit person not identified immoderate grounds that the unauthorized enactment gained entree to SEC systems, data, devices, oregon different societal media accounts.”
The SEC further shared: “While multi-factor authentication (MFA) had antecedently been enabled connected the @SECGov X account, it was disabled by X Support, astatine the [SEC] staff’s request, successful July 2023 owed to issues accessing the account.” The regulator added:
Once entree was reestablished, MFA remained disabled until unit reenabled it aft the relationship was compromised connected January 9. MFA presently is enabled for each SEC societal media accounts that connection it.
The securities watchdog emphasized that the SEC unit proceed to coordinate with respective instrumentality enforcement and national oversight entities, including the Federal Bureau of Investigation (FBI), the Department of Homeland Security (DHS), the Commodity Futures Trading Commission (CFTC), the Department of Justice (DOJ), and the SEC’s ain Division of Enforcement.
“Among different things, instrumentality enforcement is presently investigating however the unauthorized enactment got the bearer to alteration the SIM for the relationship and however the enactment knew which telephone fig was associated with the account,” the SEC detailed.
A important fig of SIM swap attacks are targeting crypto investors. Besides the SEC, different notable victims of SIM swap attacks see Ethereum co-founder Vitalik Buterin. Our guide explains however to avert a SIM swap attack.
What bash you deliberation astir however the SEC got SIM swapped? Let america cognize successful the comments conception below.
English (US) 