Saturday, May 31, 2025

Latest

Multi-Factor Authentication Fail Led to Tweet Hack, Says SEC

The U.S. Securities and Exchange Commission (SEC) on Monday shed light on the recent cyber attack on its X account. The agency confirmed that the breach was a result of a hacker taking control of the mobile phone number linked to one of its cell phones.

The SEC’s investigation into the incident revealed that the unauthorized party gained access to the SEC cell phone number through a ‘SIM swap’ attack, a method where hackers convince a telecom carrier to switch a mobile phone number to a SIM card controlled by the attacker. This allowed the hacker to change passwords associated with the compromised phone number, ultimately leading to the false tweet that claimed national exchanges had approved the listing of Bitcoin ETFs.

The agency clarified that the breach occurred through the telecom carrier and not the SEC’s internal systems. An SEC spokesperson stated, “SEC staff have not identified any evidence that the unauthorized party gained access to SEC systems, data, devices, or other social media accounts.”

Interestingly, it was disclosed that the SEC had requested X to deactivate multi-factor authentication (MFA) for its account in July due to issues accessing the account. The MFA remained disabled until SEC staff reenabled it after the compromise on January 9. The July request coincided with changes in X’s policies, making text-based MFA a paid feature.

SEC Chair Gary Gensler previously addressed the incident after a tweet claimed that the SEC had granted approval for the listing of Bitcoin exchange-traded funds (ETFs) on all registered national securities exchanges.

Gensler acknowledged the compromise, stating, “an unauthorized tweet” had been posted, clarifying that Bitcoin ETFs had not been approved for trading. The tweet in question, allegedly from the SEC, asserted that the approved ETFs would be subject to ongoing surveillance and compliance measures, and even included a supposed quote from Gensler highlighting how the approval would “enhance market transparency.”

The broader context highlights the rising prevalence of SIM swap attacks as a favored hacking tactic. With most users relying on SMS-based MFA, SIM swapping has become a go-to method for hackers to exploit insecurities around passwords and phone numbers. Major companies such as Uber, MGM Resorts, and Clorox have fallen victim to similar attacks in recent years.

The Federal Communications Commission has responded to the increasing threat by introducing new rules for telecom providers, effective from June, aimed at curbing SIM swapping attacks. Despite ongoing investigations, federal authorities have yet to identify the perpetrators behind the hack of the SEC’s Twitter account.


Information for this briefing was found via Axios and the sources mentioned. The author has no securities or affiliations related to this organization. Not a recommendation to buy or sell. Always do additional research and consult a professional before purchasing a security. The author holds no licenses.

Leave a Reply

Video Articles

How To Profit From $3300 Gold? An Inside Look At A Massive 300,000 Oz Project | Martino De Ciccio

We’re At The Start of a Great Silver Boom | Ross McElroy & Andy Bowering – Apollo Silver Corp

Equinox Gold Q1 Earnings: When Everything Goes Wrong

Recommended

ESGold Begins Concentration Tests Ahead Of First Production

Sterling Metals Hits 0.21% Copper Over 482.8 Metres In First Drilling At Soo Copper project

Related News

Citron Research Associate Ryan Choi to Settle SEC Fraud Case for $1.8 Million

Ryan Choi, a 35-year-old Beverly Hills resident and associate of prominent short seller Andrew Left,...

Wednesday, October 23, 2024, 08:00:00 AM

New SEC Lawsuit Claims Elon Musk Delayed Twitter Stake Disclosure, Saving Millions

A new lawsuit filed by the U.S. Securities and Exchange Commission against Elon Musk, the...

Wednesday, January 15, 2025, 02:12:00 PM

Bunch Of Baloney: SEC Charges New Jersey Deli’s Father-Son Duo For Manipulating US$100 Million Valuation

A New Jersey deli–Hometown International–with a single standalone store grossing US$35,000 in the last two...

Tuesday, September 27, 2022, 03:51:00 PM

Grayscale Bitcoin Trust ETF Bleeds $515 Million On Tuesday

Bitcoin’s value dropped below $39,000 for the first time in almost two months as Grayscale’s...

Wednesday, January 24, 2024, 07:40:56 AM

Hedge Funds Might Soon Have To Report Crypto Exposures

The Securities and Exchange Commission and the Commodity Futures Trading Commission are reportedly putting forward...

Wednesday, August 10, 2022, 02:54:00 PM