Topic: Privacy at risk using mobile phones. Not only Bitcoin-related. (Read 584 times)
SIM Swapping is the attack I fear most because if normally it's easy to follow some precautions to avoid being scammed, it doesn't feel like it's the case with SIM cards. And I do use 2FA to get access to my Bitcoin wallet, so my phone is involved in the process. Even after reading about the measures I don't feel like they're actually going to help much, and adding them means making a lot of processes related to using a phone more complicated... Even though the op created the post back in September 2019, it's still a very relevant issue with no definite way of protecting oneself against such an attack.
Crimes related to mobile phones are not new, even the government can be the perpetrators. As Edward Snowden said that
the government can tap the mobile phones that we use. Now privacy is almost non-existent, so be more careful inside using
mobile phones. With many SIM Swap Attack incidents against cryptocurrency users, it is indeed the safest place to store
cryptocurrency is a hardware wallet.
the government can tap the mobile phones that we use. Now privacy is almost non-existent, so be more careful inside using
mobile phones. With many SIM Swap Attack incidents against cryptocurrency users, it is indeed the safest place to store
cryptocurrency is a hardware wallet.
You can forget about privacy. It no longer exists. Forget about it.
There will always be talented (and even genius) people who can use a technology for a different purpose than what we normal people know them for. This case for the mobile phone can be an alarming one all because billions of people can be at risk here if that same hacking technology can be employed to track people without the consent of the individuals involved. In the world where privacy is endangered, this news is making me uneasy but it is good that this brought to light right now so we can be aware and solutions can be done against it.
Be warned that this kind of attack is still a threat on Bitcoin Hodlers:
US Officials Allege Student Defrauded Apple as Part of SIM Swap Attack
There are many ways to counter this type of attack:
US Officials Allege Student Defrauded Apple as Part of SIM Swap Attack
Quote
A 20-year old California resident was charged Monday by the U.S. Department of Justice with allegedly participating in a SIM-swapping scam that defrauded Apple and stole one victim’s cryptocurrency.
There are many ways to counter this type of attack:
- Always use different phones to access a website and to activate 2FA (having 2FA on the same device is dangerous).
- Be aware of this type of attack and do not understimate warning sign
- Be alert, practice your own OPSEC.
September 17, 2019, 03:41:37 AM
Possibly run a second burner phone with just sms and Google auth and other 2fa, nothing else.
Google auth is lame authenticator app (but unfortunately, widely known, just cause, Google brand), if someone gets their hands on your phone, the codes are available naked, better use authenticator apps that takes measures to protect it.
September 17, 2019, 03:05:24 AM
Don't keep coins on exchanges is acceptable but don't keep coins on phone? i don't see any reason why because i think its safe on my own side, i have been keeping my coins on phone since 2016 and i have no issue till date, secondly my phone has inbuilt fingerprint and face recognition for anyone to access
He probably only said that because it's easier to lose coins in your phone than in your PC, but if you know what you're doing, phones should be perfectly viable for storage. This attack, for one, is practically limited to tracking victims, so there shouldn't be any risk of crypto loss. Just make sure you don't keep large amounts anywhere that's not cold storage.
September 17, 2019, 02:56:45 AM
I use a burner phones for all my Crypto related stuff, so I can see where attacks are coming from. The Sim swap thing is not something new and in my country we have syndicates that are working with employees that are working for the telecommunication companies to enable them to do these Sim swaps.
Also remember that these Sim swaps are targeted at online Banking services too, so it is not just Bitcoin related services that are targeted by this.
Also remember that these Sim swaps are targeted at online Banking services too, so it is not just Bitcoin related services that are targeted by this.
September 17, 2019, 02:45:06 AM
Don't keep coins on exchanges, don't keep coins on phones and make sure your 2fa isn't sms based. It's an easy way to not take a apart in these. That and don't give your phone number out to everyone, they have to know who to target as well.
Possibly run a second burner phone with just sms and Google auth and other 2fa, nothing else.
Don't keep coins on exchanges is acceptable but don't keep coins on phone? i don't see any reason why because i think its safe on my own side, i have been keeping my coins on phone since 2016 and i have no issue till date, secondly my phone has inbuilt fingerprint and face recognition for anyone to access Possibly run a second burner phone with just sms and Google auth and other 2fa, nothing else.
its not acceptable to me because i often used exchanges for trading so putting my coins on them can be convinient but if you are scared then better if you withdrew your coins away from exchanges and only deposit on them if you will use it imediately . you said your phone is open to anyone but why did you do that ? i think that is more risky because anyone that opens your phone can be a suspect if ever you lost your coins on your phone . you shouldnt store coins on it or you should not open your password to anyone else .
September 17, 2019, 02:34:04 AM
Don't keep coins on exchanges, don't keep coins on phones and make sure your 2fa isn't sms based. It's an easy way to not take a apart in these. That and don't give your phone number out to everyone, they have to know who to target as well.
Possibly run a second burner phone with just sms and Google auth and other 2fa, nothing else.
Don't keep coins on exchanges is acceptable but don't keep coins on phone? i don't see any reason why because i think its safe on my own side, i have been keeping my coins on phone since 2016 and i have no issue till date, secondly my phone has inbuilt fingerprint and face recognition for anyone to access Possibly run a second burner phone with just sms and Google auth and other 2fa, nothing else.
September 17, 2019, 01:54:54 AM
Unfortunately, there are tons of ways and scammers are upgraded their way on how to scam us using our mobile phones through apps that are being downloaded.
Here are some topics that may increase our awarenes. They can possibly access our mobile phone.
Here are some topics that may increase our awarenes. They can possibly access our mobile phone.
- Browser Extensions that can steak our stored Bitcoin
- Android Users with apps downloaded that have affectes by Malware
We should not download unnecessary apps to our mobile phones, extra precautions should be done especially when we have some bitcoins that are stored in our phone.
September 16, 2019, 07:48:32 PM
All returned to the user. We must be careful and not arbitrarily spread our SIM or email numbers on the internet. It would be better if you give it to someone you can trust. Because there could be hackers who take advantage of loopholes after knowing your SIM card number. Always use layered security on Exchanger accounts or private wallets such as 2fa or email verification.
September 16, 2019, 12:39:18 PM
Our privacy has been at risk for a long time. We need to be very careful about keeping our private information, passwords etc. . If we do not keep our data in a secure place, then the risk is getting bigger.
September 16, 2019, 12:32:56 PM
While you can be exempt from being spied by apps, simply not installing them and keeping your system clean, it is difficult being tracked down by this GSM exploit, as it happens automatically, without user interaction, whatever the system software is.
So bigger threat: caused by just having a mobile in your hand.
In my opinion, it has always been well known that a mobile phone and the Internet are all that cybercriminals need to know absolutely everything about us. Almost none of our precautions will lead to anything if we just turn on our mobile phone and even connect to the Internet. This is enough to see us, to hear, to observe us, to know exactly our location with an accuracy of a meter. The relevant intelligence agencies have long been using these opportunities to observe individual citizens, bypassing the legal procedure of wiretapping and surveillance.So bigger threat: caused by just having a mobile in your hand.
Civilization provides us with various benefits, but we always pay for them with our freedom.
September 16, 2019, 12:16:56 PM
While you can be exempt from being spied by apps, simply not installing them and keeping your system clean, it is difficult being tracked down by this GSM exploit, as it happens automatically, without user interaction, whatever the system software is.
So bigger threat: caused by just having a mobile in your hand.
In my opinion, it has always been well known that a mobile phone and the Internet are all that cybercriminals need to know absolutely everything about us. Almost none of our precautions will lead to anything if we just turn on our mobile phone and even connect to the Internet. This is enough to see us, to hear, to observe us, to know exactly our location with an accuracy of a meter. The relevant intelligence agencies have long been using these opportunities to observe individual citizens, bypassing the legal procedure of wiretapping and surveillance.So bigger threat: caused by just having a mobile in your hand.
Civilization provides us with various benefits, but we always pay for them with our freedom.
September 16, 2019, 12:13:41 PM
There's really a risk in digital world. It's the cons of technology nowadays. Although technology wasn't made with that purpose, it's the abusing people who are inevitable. Especially we all know that most people now have a lot of important information on their cellphones. As we depend on technology like our phones with our privacy, we become more vulnerable. Crypto is not an exemption. It's more vulnerable for bad people that's why we should always be careful with what we do in our phones and social media
There's a proverb in my country. The door doesn't last to the thief. Of course we have to take precautions, but I don't think we have much luck when the thief is malicious. Like I said, there's no need to make an obsession. Just take precautions.
September 16, 2019, 11:41:39 AM
There's really a risk in digital world. It's the cons of technology nowadays. Although technology wasn't made with that purpose, it's the abusing people who are inevitable. Especially we all know that most people now have a lot of important information on their cellphones. As we depend on technology like our phones with our privacy, we become more vulnerable. Crypto is not an exemption. It's more vulnerable for bad people that's why we should always be careful with what we do in our phones and social media
September 16, 2019, 11:02:27 AM
While you can be exempt from being spied by apps, simply not installing them and keeping your system clean, it is difficult being tracked down by this GSM exploit, as it happens automatically, without user interaction, whatever the system software is.
So bigger threat: caused by just having a mobile in your hand.
So bigger threat: caused by just having a mobile in your hand.
September 16, 2019, 10:58:32 AM
SMS based attacks in my view is just the tip of the iceberg.
Backdoors in popular apps are affecting 10s of millions of users, not to mention the surveillance of Facebook app. There are rumors that Whatsapp will also soon be spying on us.
Backdoors in popular apps are affecting 10s of millions of users, not to mention the surveillance of Facebook app. There are rumors that Whatsapp will also soon be spying on us.
September 16, 2019, 07:49:25 AM
Android is a semi-closed environment under the control of Google (otherwise it wouldn't be possible for Google to ban Huawei from using it)
Apple is a closed environment under the control of Apple (I think nobody can argue with that)
Other solution are totally sub-par, considering support, efficiency and number of available applications.
Yes, I do think mobile security is fundamentally broken.
Critical apps should be taken away from mobile, inconvenient truth.
Apple is a closed environment under the control of Apple (I think nobody can argue with that)
Other solution are totally sub-par, considering support, efficiency and number of available applications.
Yes, I do think mobile security is fundamentally broken.
Critical apps should be taken away from mobile, inconvenient truth.
Jump to: