Um, but our fault is what? Do we issue these sim cards or what? (c) Vkontakte
My wife's friend's girlfriend took a decent amount of money from a bank account, and did it, apparently, using a duplicate SIM card obtained by fraud on her phone number. There is no official conclusion of the investigation yet, this is just a suggestion of a bank employee.
And it happened a couple of days after the appearance of this article on Habré. To be honest, I panicked. The attack turned out to be quite an ordinary person, who does not have any exorbitant incomes or other signs, which could have been used by fraudsters to find a victim. It is possible that someone is already making a duplicate of my SIM card in order to do some bad things.
I decided to untie my phone number from the services that make it possible to control myself or get access by phone. I am not an expert in the field of information security, so this decision may later prove to be wrong. But for now let it be so.
')
There is a lot of talk about the fact that in this situation cellular operators are guilty, issuing duplicate SIM cards to anyone, or other organizations, such as banks, who do not enough work to verify these SIM cards in their systems. There is a fact of violation of information security, and the definition of the guilty has not saved anyone from this situation.
Suddenly, I could not untie my phone from Vkontakte. Of course, hardly anyone seriously harm me if I get access to my account on the social network, but nonetheless.
The following dialogue with the support service happened:
I may be alarmist and paranoid. But why? Why, when you warn such a large social network about the threat, albeit unlikely, it turns out that this is not their concern. Maybe I'm wrong in something?
Update
User aalebedev suggested a solution here :
And it happened a couple of days after the appearance of this article on Habré. To be honest, I panicked. The attack turned out to be quite an ordinary person, who does not have any exorbitant incomes or other signs, which could have been used by fraudsters to find a victim. It is possible that someone is already making a duplicate of my SIM card in order to do some bad things.
I decided to untie my phone number from the services that make it possible to control myself or get access by phone. I am not an expert in the field of information security, so this decision may later prove to be wrong. But for now let it be so.
')
There is a lot of talk about the fact that in this situation cellular operators are guilty, issuing duplicate SIM cards to anyone, or other organizations, such as banks, who do not enough work to verify these SIM cards in their systems. There is a fact of violation of information security, and the definition of the guilty has not saved anyone from this situation.
Suddenly, I could not untie my phone from Vkontakte. Of course, hardly anyone seriously harm me if I get access to my account on the social network, but nonetheless.
The following dialogue with the support service happened:
I may be alarmist and paranoid. But why? Why, when you warn such a large social network about the threat, albeit unlikely, it turns out that this is not their concern. Maybe I'm wrong in something?
Update
User aalebedev suggested a solution here :
Enable two-factor authentication. vk.com/page-59800369_47885415
Then there will be a recovery via email, not a phone.
And take an email Google, too, with a two-factor.
Source: https://habr.com/ru/post/268357/
All Articles