For background: I work in IT. I am an enterprise level sysadmin for a large organization, with a focus on Email and Identity (both cloud and premise). I dabble in ethical hacking on the side as well.
I give this background because I might just be paranoid, because I pretty much defend against phishing attacks for a living
Here’s my question … is it possible this situation is malicious? —
I just realized that I am no longer able to receive SMS-based OTP codes when using multi-factor authentication on multiple different websites. They just aren’t delivering.
I can receive all sorts of other texts (SMS, iMessage, and RCS). My wife can receive OTP codes from the very same websites that are failing for me. I’ve checked text filters, blocked numbers, etc. I have no idea why this is happening.
Is it possible that my OTP SMS’s are being intercepted somehow? I know SMS is a weak form of MFA, but I’m not savvy about how SMS interception works.
Am I crazy? Thoughts?
[link] [comments]
from hacking: security in practice https://ift.tt/orXh7kH
Comments
Post a Comment