Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Home
- Forums
- Mobility Products and Services
- Mobility Devices
- Sakari SMS Vulnerability/Exploit
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-22-2021 03:54 PM
I would like to know what can be done to protect myself from this exploit/vulnerability?
https://www.vice.com/en/article/y3g8wb/hacker-got-my-texts-16-dollars-sakari-netnumber
Solved! Go to Solution.
1 ACCEPTED SOLUTION
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-24-2021 01:44 AM - edited 03-24-2021 01:44 AM
@Quantos - Avoid using SMS for two factor authentication. Unless there is a global change in the design and the way SMS works, there is little that can be done to protect yourself. It's doubtful that change will occur any time soon.
@JamesStewart - That company has only existed for a few weeks. Their website has existed for maybe a week. All these articles pushing that site appeared in the last week as well. Unusually convenient. Okey is also incorporated through a registered agent at that massive corporate LLC mailbox farm in Wyoming to hide who's really behind it. Lucky, who appears in most of the articles, has a financial interest in Okey as well so he's basically advertising a service he benefits financially from. Okey also collect the phone numbers of your contacts and any caller to your device as well. (It's in their terms of service) That's separate from the SMS monitoring "service" they're supposedly providing. Too many red flags. I wouldn't touch that site. So far none of the security experts have weighed in on whether or not Okey is even trustable or can even do what it claims at this point in time.
Additionally if that site does notify you of some supposed issue, what exactly can you do to fix it? By that point it's too late and it's not even something a service provider can do since the SMS messages are being intercepted before it even reaches their systems. Right now that site appears to be preying on users fears to make a quick buck on their monitoring service.
If you find a post useful, please give the author a "Kudo" or mark as an accepted solution if it solves your trouble. 🙂
Reply
6 REPLIES 6
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-23-2021
09:18 PM
- last edited on
03-24-2021
12:08 PM
by
dru
I have an account with OkeyMonitor to monitor my numbers.
Reply
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-23-2021 09:21 PM
I don't think that I can edit my post. But, I should mention, while their service should alert you to a change so that you can take action, it won't prevent it from happening.
Reply
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-24-2021 01:44 AM - edited 03-24-2021 01:44 AM
@Quantos - Avoid using SMS for two factor authentication. Unless there is a global change in the design and the way SMS works, there is little that can be done to protect yourself. It's doubtful that change will occur any time soon.
@JamesStewart - That company has only existed for a few weeks. Their website has existed for maybe a week. All these articles pushing that site appeared in the last week as well. Unusually convenient. Okey is also incorporated through a registered agent at that massive corporate LLC mailbox farm in Wyoming to hide who's really behind it. Lucky, who appears in most of the articles, has a financial interest in Okey as well so he's basically advertising a service he benefits financially from. Okey also collect the phone numbers of your contacts and any caller to your device as well. (It's in their terms of service) That's separate from the SMS monitoring "service" they're supposedly providing. Too many red flags. I wouldn't touch that site. So far none of the security experts have weighed in on whether or not Okey is even trustable or can even do what it claims at this point in time.
Additionally if that site does notify you of some supposed issue, what exactly can you do to fix it? By that point it's too late and it's not even something a service provider can do since the SMS messages are being intercepted before it even reaches their systems. Right now that site appears to be preying on users fears to make a quick buck on their monitoring service.
If you find a post useful, please give the author a "Kudo" or mark as an accepted solution if it solves your trouble. 🙂
Reply
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-24-2021 10:54 AM
I've not setup my TELUS numbers with the service, but have a couple of others that I have though, to test it out.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-25-2021 04:32 PM
Thank you both Nitro721 and Nighthawk. I think that I'm in not bad shape now.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-26-2021 08:04 PM
Not sure the significance of this: https://www.vice.com/en/article/5dp7ad/tmobile-verizon-att-sms-hijack-change but it appears the problem is solved at least inthe USA.
