Guy loses 100k$ because of SIM card 2FA hack
https://medium.com/coinmonks/the-most-expensive-lesson-of-my-life-details-of-sim-port-hack-35de11517124
#2fa #sim #crypto #wallet
https://medium.com/coinmonks/the-most-expensive-lesson-of-my-life-details-of-sim-port-hack-35de11517124
#2fa #sim #crypto #wallet
Medium
The Most Expensive Lesson Of My Life: Details of SIM port hack
I lost north of $100,000 last Wednesday. It evaporated over a 24 hour timespan in a “SIM port attack” that drained my Coinbase account.
Feds Are Tapping Protesters’ Phones. Here’s How To Stop Them.
Use Signal and add a PIN code to your phone’s SIM card to help protect against spying.
Federal agents from the Department of Homeland Security and the Justice Department used “a sophisticated cell phone cloning attack—the details of which remain classified—to intercept protesters’ phone communications” in Portland this summer, Ken Klippenstein reported this week in The Nation.
Put aside for the moment that, if the report is true, federal agents conducted sophisticated electronic surveillance against American protesters, an alarming breach of constitutional rights. Do ordinary people have any hope of defending their privacy and freedom of assembly against threats like this?
https://theintercept.com/2020/09/25/surveillance-sim-cloning-protests-protect-phone/
#US #SIM #cloning #surveillance
Use Signal and add a PIN code to your phone’s SIM card to help protect against spying.
Federal agents from the Department of Homeland Security and the Justice Department used “a sophisticated cell phone cloning attack—the details of which remain classified—to intercept protesters’ phone communications” in Portland this summer, Ken Klippenstein reported this week in The Nation.
Put aside for the moment that, if the report is true, federal agents conducted sophisticated electronic surveillance against American protesters, an alarming breach of constitutional rights. Do ordinary people have any hope of defending their privacy and freedom of assembly against threats like this?
https://theintercept.com/2020/09/25/surveillance-sim-cloning-protests-protect-phone/
#US #SIM #cloning #surveillance
The Intercept
One Way to Prevent Police From Surveilling Your Phone
You can add a PIN code to your phone’s SIM card in order to prevent police from cloning it.
Purism is Announcing Librem AweSIM: A Privacy-focused Cellular Service for the Librem 5
https://puri.sm/posts/announcing-librem-awesim-a-privacy-focused-cellular-service-for-the-librem-5
#awesim #sim #purism #librem
https://puri.sm/posts/announcing-librem-awesim-a-privacy-focused-cellular-service-for-the-librem-5
#awesim #sim #purism #librem
Purism
Announcing Librem AweSIM: A Privacy-focused Cellular Service for the Librem 5 – Purism
Purism makes premium phones, laptops, mini PCs and servers running free software on PureOS. Purism products respect people's privacy and freedom while protecting their security.
#Qualcomm announces - iSIM tech that integrates SIM card with processor.
A new #iSIM (integrated #SIM) standard is on its way and built upon eSIM by directly integrating the SIM technology in the device’s main chipset.
https://www.qualcomm.com/news/releases/2022/01/18/vodafone-qualcomm-technologies-and-thales-deliver-world-first-smartphone
A new #iSIM (integrated #SIM) standard is on its way and built upon eSIM by directly integrating the SIM technology in the device’s main chipset.
https://www.qualcomm.com/news/releases/2022/01/18/vodafone-qualcomm-technologies-and-thales-deliver-world-first-smartphone
Qualcomm
Vodafone, Qualcomm Technologies, and Thales Deliver World-First
Leading industry innovators Vodafone, Qualcomm Technologies, Inc., and Thales have joined forces to demonstrate a working smartphone featuring iSIM (based on the ieUICC[1] GSMA specification) - a new technology enabling the functionality of a SIM
Media is too big
VIEW IN TELEGRAM
How Sim Swap Hackers Steal Millions | Mental Outlaw
In this video I explain how hackers are able to steal millions of dollars and access sensitive data in peoples accounts that are secured with #SMS 2 factor authentication and how you can defend yourself from sim swapping attacks by using 2 factor authentication
#Hacking #Hackers #Sim #2fA
In this video I explain how hackers are able to steal millions of dollars and access sensitive data in peoples accounts that are secured with #SMS 2 factor authentication and how you can defend yourself from sim swapping attacks by using 2 factor authentication
#Hacking #Hackers #Sim #2fA
The Indian government has ordered SIM binding directives to WhatsApp, Telegram, Snapchat and more
The Department of Telecommunications (DoT) notified the Telecommunication Cybersecurity Amendment Rules, 2025 and introduced new category called the Telecommunication Identifier User Entity (TIUE), which would fulfill a range of cybersecurity obligations, including using a Mobile Number Validation (MNV) Platform to verify the customers or users associated with a telecommunication identifier for services linked to such an identifier.
The new directions, which have been sent to WhatsApp, Telegram, Signal, Arattai, Snapchat, ShareChat, JioChat, and Josh, effectively recognise these companies as TIUEs. They require platforms to ensure that SIM cards remain continuously linked to their services within the next 90 days. For website or web-app-based access, TIUEs must ensure users are logged out periodically (not later than 6 hours) and must offer an option to relink accounts through a QR-code-based method.
This means that, you cannot use the same telegram account on more than 1 smartphone and will be logged out automatically everyday under 6 hours on the web app. This directive is set to be enforced from February 2026.
The government has observed that some apps using mobile numbers for customer validation allow access even when the underlying #SIM is not present in the device. The government argues that this creates vulnerabilities exploited from outside #India to commit cyber fraud.
Follow @TechLeaksZone
The Department of Telecommunications (DoT) notified the Telecommunication Cybersecurity Amendment Rules, 2025 and introduced new category called the Telecommunication Identifier User Entity (TIUE), which would fulfill a range of cybersecurity obligations, including using a Mobile Number Validation (MNV) Platform to verify the customers or users associated with a telecommunication identifier for services linked to such an identifier.
The new directions, which have been sent to WhatsApp, Telegram, Signal, Arattai, Snapchat, ShareChat, JioChat, and Josh, effectively recognise these companies as TIUEs. They require platforms to ensure that SIM cards remain continuously linked to their services within the next 90 days. For website or web-app-based access, TIUEs must ensure users are logged out periodically (not later than 6 hours) and must offer an option to relink accounts through a QR-code-based method.
This means that, you cannot use the same telegram account on more than 1 smartphone and will be logged out automatically everyday under 6 hours on the web app. This directive is set to be enforced from February 2026.
The government has observed that some apps using mobile numbers for customer validation allow access even when the underlying #SIM is not present in the device. The government argues that this creates vulnerabilities exploited from outside #India to commit cyber fraud.
Follow @TechLeaksZone
How to get a #SIM card:
https://antifandom.com/prepaid-data-sim-card/wiki/Registration_Policies_Per_Country
https://breezewiki.woodland.cafe/prepaid-data-sim-card/wiki/Prepaid_SIM_with_data
https://breezewiki.woodland.cafe/prepaid-data-sim-card/wiki/United_States
https://breezewiki.woodland.cafe/prepaid-data-sim-card/wiki/AT&T_USA
https://breezewiki.woodland.cafe/prepaid-data-sim-card/wiki/Verizon_USA
https://breezewiki.pussthecat.org/prepaid-data-sim-card/wiki/T-Mobile_USA
(More countries can be found on the first two links.)
Phone number for SMS verifications, SIM Services and more:
Recommended: Providers which accept Monero (XMR) and don’t require verification:
(Iceland based) https://crypton.sh [Tor Mirror] [Archive.org]
(Ukraine based) https://virtualsim.net/ [Archive.org]
(Many countries) https://silent.link/ [Archive.org] (my favorite)
Do require e-mail verification, but accept Monero:
(US California based) https://mobilesms.io [Archive.org]
(Germany based) https://www.sms77.io/ [Archive.org]
(Russia based) https://onlinesim.ru/ [Archive.org]
There are some other possibilities listed here https://cryptwerk.com/companies/sms/xmr/ [Archive.org]. Use at your own risk.
Now, what if you have no money? Well, in that case, you will have to try your luck with free services and hope for the best. Here are some examples, use at your own risk:
https://oksms.org
https://smspva.com
https://sms24.me
Disclaimer: We cannot vouch for any of these providers. We recommend doing it yourself physically. In this case, you will have to rely on the anonymity of Monero and you should not use any service that requires any kind of identification using your real identity. Please do read Appendix B2: Monero Disclaimer.
It is more convenient, cheaper, and less risky to just get a pre-paid SIM card from one of the physical places that still sell them for cash without ID.
Miscellaneous:
https://www.textverified.com/
https://help.cloaked.app/hc/en-us/articles/11841989344404-How-do-Phone-Calls-and-Text-Messages-Work-
https://mobilesms.io
https://blog.quackr.io/temporary-phone-number-apps-that-work-for-discord/
https://www.maskenmann.tv/virtuelle-rufnummer-fuer-sms-verifizierung/
https://simsup.net/shop/anonymous-sim-card/
https://www.maskenmann.tv/virtuelle-rufnummer-fuer-sms-verifizierung/
https://smspool.net
https://antifandom.com/prepaid-data-sim-card/wiki/Registration_Policies_Per_Country
https://breezewiki.woodland.cafe/prepaid-data-sim-card/wiki/Prepaid_SIM_with_data
https://breezewiki.woodland.cafe/prepaid-data-sim-card/wiki/United_States
https://breezewiki.woodland.cafe/prepaid-data-sim-card/wiki/AT&T_USA
https://breezewiki.woodland.cafe/prepaid-data-sim-card/wiki/Verizon_USA
https://breezewiki.pussthecat.org/prepaid-data-sim-card/wiki/T-Mobile_USA
(More countries can be found on the first two links.)
Phone number for SMS verifications, SIM Services and more:
Recommended: Providers which accept Monero (XMR) and don’t require verification:
(Iceland based) https://crypton.sh [Tor Mirror] [Archive.org]
(Ukraine based) https://virtualsim.net/ [Archive.org]
(Many countries) https://silent.link/ [Archive.org] (my favorite)
Do require e-mail verification, but accept Monero:
(US California based) https://mobilesms.io [Archive.org]
(Germany based) https://www.sms77.io/ [Archive.org]
(Russia based) https://onlinesim.ru/ [Archive.org]
There are some other possibilities listed here https://cryptwerk.com/companies/sms/xmr/ [Archive.org]. Use at your own risk.
Now, what if you have no money? Well, in that case, you will have to try your luck with free services and hope for the best. Here are some examples, use at your own risk:
https://oksms.org
https://smspva.com
https://sms24.me
Disclaimer: We cannot vouch for any of these providers. We recommend doing it yourself physically. In this case, you will have to rely on the anonymity of Monero and you should not use any service that requires any kind of identification using your real identity. Please do read Appendix B2: Monero Disclaimer.
It is more convenient, cheaper, and less risky to just get a pre-paid SIM card from one of the physical places that still sell them for cash without ID.
Miscellaneous:
https://www.textverified.com/
https://help.cloaked.app/hc/en-us/articles/11841989344404-How-do-Phone-Calls-and-Text-Messages-Work-
https://mobilesms.io
https://blog.quackr.io/temporary-phone-number-apps-that-work-for-discord/
https://www.maskenmann.tv/virtuelle-rufnummer-fuer-sms-verifizierung/
https://simsup.net/shop/anonymous-sim-card/
https://www.maskenmann.tv/virtuelle-rufnummer-fuer-sms-verifizierung/
https://smspool.net