Security News > 2020 > January > How Wireless Carriers Open the Door to SIM Swapping Attacks

How Wireless Carriers Open the Door to SIM Swapping Attacks
2020-01-15 18:33

Five major U.S. prepaid wireless carriers - AT&T, T-Mobile, Verizon, Tracfone and US Mobile - are using poor account authentication procedures and techniques that leave their customers open to SIM swapping attacks, according to researchers at Princeton University.

Their report, "An Empirical Study of Wireless Carrier Authentication for SIM Swaps," also examined 145 websites, including social media platforms, email providers and cryptocurrency exchanges, which use phone-based authentication to identify a user's identify.

The Princeton researchers conclude that the five wireless carriers and their customer support staff have created poor authentication procedures that leave customers' identity and accounts open to hacking.

Nick Ludlum, senior vice president and chief communications officer for the association, told Information Security Media Group that these carriers are committed to fighting SIM swapping attacks.

The Princeton researchers describe several steps that wireless carriers could take to improve the authentication process and cut down on SIM swapping.


News URL

https://www.inforisktoday.com/how-wireless-carriers-open-door-to-sim-swapping-attacks-a-13609