Currencies38120
Market Cap$ 2.24T+1.58%
24h Spot Volume$ 29.93B-20.3%
DominanceBTC56.26%+0.63%ETH9.36%-0.33%
ETH Gas0.11 Gwei
Cryptorank
/

SEC Reveals Multi-Factor Authentication Disabled Before False ETF Approval Post


SEC Reveals Multi-Factor Authentication Disabled Before False ETF Approval Post

Share:

Predictions Markets

See what traders are focused on

View analytics →
Prediction Banner

On Monday, the Securities and Exchange Commission (SEC) disclosed that multi-factor authentication (MFA) on its X account was disabled leading up to a false post earlier this month, just before the formal approval of spot Bitcoin ETFs.

The incident occurred on Tuesday, January 9, 2024, when the SEC’s @SECGov X account was compromised, and unauthorized posts regarding the approval of spot Bitcoin exchange-traded funds emerged.

SIM Swap Attack

According to a statement released by an SEC spokesperson on January 22, It was revealed that the unauthorized party gained control of the agency cell phone number associated with the account through a “SIM swap” attack.

This technique allows transferring a person’s phone number to another device without authorization. While the SEC has confirmed that the access to the phone number occurred via the telecom carrier and not its systems, the method and motivation behind the attack are still under investigation.

Notably, multi-factor authentication had been disabled on the @SECGov X account in July 2023 at the staff’s request due to issues accessing the account. It remained disabled until staff reenabled it after the account was compromised. Currently, MFA is enabled for all SEC social media accounts that offer it.

This allowed the unauthorized party to post on the compromised account, falsely announcing the Commission’s approval of spot Bitcoin exchange-traded funds and liking two posts by non-SEC accounts.

SEC Reassures Public Amid Cybersecurity Breach

In its statement, the SEC has assured the public that, based on current information, there is no evidence that the unauthorized party gained access to its systems, data, devices, or other social media accounts.

The agency also emphasized its commitment to cybersecurity obligations, acknowledging concerns about the security of its social media accounts. The team is still assessing the impacts of the incident on the agency, investors, and the marketplace, with ongoing collaboration with law enforcement and federal oversight entities.

Meanwhile, the SEC has reiterated that it does not use social media channels to make its actions public, and such posts only amplify announcements made on its official website.

As the investigations continue, the SEC is committed to providing updates on the incident. It will take any necessary remedial measures to address concerns about the security of its social media accounts.

The post SEC Reveals Multi-Factor Authentication Disabled Before False ETF Approval Post appeared first on CryptoPotato.

Read the article at CryptoPotato

In This News

Coins

$ 62.94K

+2.21%

$ 0.0539

+1.77%

$ 0.00...361

$ 0.000603

$ 0.0000551


Funds

Predictions Markets

See what traders are focused on

View analytics →
Prediction Banner

Share:

In This News

Coins

$ 62.94K

+2.21%

$ 0.0539

+1.77%

$ 0.00...361

$ 0.000603

$ 0.0000551


Funds

Predictions Markets

See what traders are focused on

View analytics →
Prediction Banner

Share:

Read More

White House Says Democrats Failed to Recommend SEC and CFTC Nominees, Disputing Earlier Claims

White House Says Democrats Failed to Recommend SEC and CFTC Nominees, Disputing Earlier Claims

BitcoinWorld White House Says Democrats Failed to Recommend SEC and CFTC Nominees, D...
Глава Комиссии по товарным фьючерсам США назвал биткоин «антихрупким активом»

Глава Комиссии по товарным фьючерсам США назвал биткоин «антихрупким активом»

В интервью стороннику Дональда Трампа, блогеру TheBlaze Селиг вспомнил, как биткоину ...