Pages

Saturday, June 18, 2016

How You Can Hack Facebook Account? Someone Just Needs Your Cell Phone Number

Roughly a fourth in the world's population logs on Facebook every month. And to the millions of them whom secure their accounts using phone numbers, those users are prone to losing control of his or her Facebook data to cyber criminals.

It's not just FB users who are susceptible to finding themselves shut beyond their account with their ways of restoring access now improved. Any account that uses phone numbers as a technique to restore access is vulnerable - that also includes the Gmail, Twitter, Yahoo Mail and also a crowd of others.

Any additional way into a forex account for the user can be yet another door that could be unlocked by a hacker. If users opt to purchase a door secured by their numbers, they're giving hackers a less arduous option than the doorway, according to experts.

Researchers from Positive Engineering have issued a proof of concept that shows what sort of commonly exploited flaw works extremely well as a tool for you to spring the locks in Facebook accounts. The concept leverages a well-known flaw inside SS7 (Signaling System 7) standard protocol, tech developed in the mid 70s to deal with information exchanged over PSTNs (Public Went Telephone Networks).

Positive Technologies previously revealed how exploiting the SS7 protocol's flaw may be leveraged to pinpoint the venue of a person, working only on that individual's number. This time, the research firm features proven that the protocol enable you to intercept security modes for the purpose of account holders.

Armed which has a target's phone number, hackers only need to click on Facebook's "Forgot your current password? " option along with input the victim's variety. Then using the SS7 standard protocol flaw, the hacker can direct the security code Facebook generates and apply it to log into your victim's account.

Location tracking and Facebook hacking aren't really the only uses for the SS7 weakness. Positive Technologies also found that hackers would use the exploit to decode encrypted mail messages. That's because secure messaging software use SMS authentication equally account recovery systems accomplish.

"SMS authentication is one of several major security mechanisms pertaining to services like WhatsApp, FB, Google, Viber, etc., " states Positive Technologies. "Devices along with applications send SMS mail messages via the SS7 multilevel to verify identity, and an attacker can readily intercept these and assume identity in the legitimate user. "

One of several major takeaways from doing this is that users must be wary of using their numbers to secure their records. That, and the idea that it's time to boost SS7 security.

Techsourcenetwork