Received a legal email. I called the phone provider to confirm my name, address and security key. The mobile phone provider said that in order to receive a new SIM card, it had tried to make a call many times, but was rejected because it did not provide a security key. Unfortunately, in one of the phone attempts, the agent did not request a security key, and the hacker could obtain a new SIM card. PayPal only needs an email address and SMS to reset the password, so hackers can enter the PayPal account after obtaining a new SIM card. In the end, it took the hacker several hours to find a customer service agent that did not comply with the protocol and request a security key. The
However, the key points are: It took only about 15 minutes for the hacker to damage the mobile phone and steal money from the victim’s bank account after he visited the agent who violated the agreement. Conclusion: the success of hackers is due to the insufficient SMS two factor authentication when mobile phone providers do not follow the basic security protocol. If there is a potential security risk, does it mean that all dual authentication or at least SMS types are not secure? You’re welcome. This means that SMS and other multi-level authentication may be rendered inefficiently if human error is the main cause. The
There are several ways that secondary authentication may not work. As mentioned above, the mobile phone provider violated security measures. Mobile phone providers do not have strong security codes. Strong password is not selected. Your password storage is not secure, and your mobile phone or other mobile phones are stolen. If your mobile phone or other mobile phones are not securely locked, your computer or laptop will be stolen. Become a victim of phishing attacks via email or phone. Post a tweet to inform you of a highly watched cryptocurrency. Unfortunately, there are many ways to make human error a reality, so it is important to take as many measures as possible to ensure safety. The
Fortunately, there are several ways to protect yourself, protect the WordPress website and identity, and effectively maintain dual authentication. Provide the security key to the mobile phone provider. If it is not required to make a direct call, please mention. Use and execute powerful passwords on the WordPress website. Use a different strong password for each word press (and other) site. Install and set up defender. Enable Level 2 authentication for all or as many users as possible in the site. Do not enable or disable SMS dual authentication. Use security locks on mobile devices and computers. Do not save all passwords in the browser. Use the secure password storage service. Store physical security tokens in multiple secure locations. Please pay close attention to the legal notification of resetting password or sending PayPal via email or SMS. You should know how to detect and avoid network fraud and network fraud. No matter how innocuous paypal or other places have available funds, phone numbers, e-mail addresses and other similar details during vacation, do not publicly publish personal information or identifiable information on the Internet. Store your computer and mobile device in a safe place. Please check carefully in public places. Also, please check what device you are using. If you use a browser that stores all passwords, all passwords can be corrupted in this way if your computer is stolen. Therefore, consider deleting all currently saved passwords, enabling dual authentication for all websites that provide passwords, or using a secure password storage service. The
WordPress website to prevent all files from being lost when the website is hacked or the computer is stolen
