How to hack Facebook accounts with just the phone number

0
268

How to hack into someone’s Facebook? By exploiting the SS7 vulnerability, an individual could hack Facebook accounts, with no greater need than to know the victim’s phone number. This vulnerability would allow you to divert the OTP code that it receives in your phone, to use it in your name and thus access the account. For this reason, it is very important (and so they recommend) not to put our phone number in the profile publicly.

Hack Facebook accounts

We are facing one of the most popular search terms we can find on the Internet. However, many of these people are also usually infected, while looking for tools to hack Facebook. Recently, a researcher in India charged no less than $ 15,000 for detecting a potential failure in the social network, which could have caused serious security problems for users. Today we will talk about the SS7 protocol and the problems involved.

The SS7 protocol

It is a mobile communications protocol -Signaling System Number 7- that is used by telephone companies around the world. Using a bug in SS7, a hacker could divert text messages and calls to their own devices.

How to hack Facebook accounts with the phone number

This security flaw affects any Facebook user with a phone number associated with their social network accounts. In a demonstration video, experts show how the first step of the attack involves the need to click on the forgotten password reminder, located on the Facebook main page. When Facebook asks the hacker about the email account or phone number, he should enter the previously stolen number of the desired victim. Then, by exploiting the failure in Secure Signaling 7, the attacker is able to divert the destination of the OTP message (One Time Password), sent by Facebook, to his own computer and thus complete the login.

Security measures to consider

To ensure that we do not have this kind of problem, we must avoid reflecting our phone number in the profile publicly, in addition to other services where it can be consulted. This is something of pure common sense and will prevent us from more than a nuisance. Finally, keep in mind that it is essential to have a two-step authentication system enabled for Facebook, but I suggest you use one that does not involve sending SMS as a second factor.

Comments are closed.