The official Twitter account of the United States Securities and Exchange Commission (SEC) fell victim to a hacker attack due to a security vulnerability. Twitter revealed that the attack was caused by the security team not enabling two-factor authentication (2FA) on the account. This incident followed a tweet containing false information that shook the cryptocurrency markets.<\/p>\n
In a statement on the SEC security page, it was mentioned that the attack occurred when an unidentified individual seized the phone number associated with the account. This happened in the form of a commonly known SIM swap attack. The attacker likely convinced a third-party telecommunications provider to take control of the phone number associated with the SEC account.<\/p>\n
Following the incident, the SEC stated in a post-event announcement, “Based on our investigation, the breach did not originate from SEC systems but occurred due to an unidentified individual taking control of a phone number associated with @SECGov through a third party.”<\/p>\n
You may notice:\u00a0Bitcoin ETF Approval Scandal! SEC is on the Target Board!<\/a><\/strong><\/em><\/p>\n This security vulnerability led to the publication of a tweet containing false information, such as the approval of a spot Bitcoin exchange-traded fund (ETF), on the SEC’s official social media platform. U.S. Senators J.D. Vance and Thom Tillis criticized the SEC for operational security shortcomings and requested a statement regarding the incident.<\/p>\n CNBC says "X was hacked", this is not a true statement. pic.twitter.com\/4AseAQuvrk<\/a><\/p>\n — Christopher Stanley (@cstanley) January 10, 2024<\/a><\/p><\/blockquote>\n\n