For many years security researchers have shown their concern regarding the severe problems with the Signaling System 7 (SS7). That has the tendency to let hackers overhear private phone calls and view text messages on a conceivably large scale. Even if the Cellular companies utilize the highest level encryption. In order to secure yourself from these hacking hazard, you need to have a VPN service. You can opt for any of these two well-known Vpn services, ExpressVPN and NordVPN.
What Is Signaling System 7?
We can define SS7 as a telephony signalling protocol which was designed in the 1980s. It typically powers more than 800 telecom operators around the world. This includes AT&T as well as Verizon. o interconnect and exchange data, like routing calls and texts with one another, enabling roaming and other services.
The Global Cellular Networks Ignorance Over The Years:
Although there are a few fixes available for years; the global cellular networks paid no attention towards this severe issue. They kept on affirming; the exploitation of the SS7 loopholes entails vital technical and monetary backing. Therefore the risk is very low and inconsiderable for the people.
Real World SS7 Attacks:
While the cellular networks were underestimating this critical flaw of SS7; real-world SS7 attacks took place earlier this year. Where the hackers exploited this designing defect in SS7. Hence they succeeded in draining victims’ bank accounts. As it turns out, the hackers intercepted two-factor authentication code; (one-time passcode, or OTP) that the customers received from their banks and redirecting it to themselves.
Here’s How Hackers Hacked into Bitcoin Wallet To Steal Fund
In order to explain the significance and severity of the SS7 flaw; white hat hackers of Positive Technologies presently demonstrated how cybercriminals could employ the SS7 flaw to gain command over the online bitcoin wallets to withdraw all your funds.
While demonstrating the attack, the Positive researchers first took Gmail address and phone number of the victim. Afterward, instated a password reset request for the account; which included transferring a single-time permission token to be forwarded to the victim’s phone number.
In the same fashion as in previous SS7 attacks, the Positive researchers were able to catch the SMS messages. The researchers then got to the Gmail inbox; with the help of 2FA code by employing the designing flaws in SS7. They finally reached the Coinbase account and instated another password reset to access victim’s Coinbase wallet. Moreover, they logged into the wallet and drained it of crypto-cash.
Use a VPN To Secure Your Bitcoins:
Connecting to a virtual private network, famously known as VPN, empowers you to securely encrypt all of your traffic. That proposes all your traffic will move through a private tunnel, saving your sensitive data aside from possible spying eyes. For further info concerning which encrypted VPN services are best to apply with Bitcoin, feel free click here; best bitcoin VPN.
