It's time to stop using SMS altogether, particularly for MFA. SMS/RCS/MMS are unencrypted and not safe to use...ever!
The Salt Typhoon attack is a reminder that unencrypted communications are vulnerable and should never be assumed to be private or secure.
You may have recently heard of a sophisticated cyberespionage campaign known as Salt Typhoon, which has targeted major U.S. telecommunications providers, including AT&T and Verizon. Attributed to Chinese state-sponsored actors, this operation has compromised sensitive systems, enabling unauthorized access to vast amounts of communication data—background…
Keep reading with a 7-day free trial
Subscribe to Tate's Online Safety Substack to keep reading this post and get 7 days of free access to the full post archives.