SEC’s X account fell victim to SIM swap attack
The SEC’s X attack happened after the agency disabled two-factor authentication in July 2023
The US Securities and Exchange Commission admitted that the two-factor authentication on its X account had been disabled since July 2023.
The SEC’s official X account was compromised earlier this month. An unauthorized person was able to not only access the account itself , but made a fake post announcing the approval of spot bitcoin ETFs.
The post was left up on the account for roughly 15 minutes before Chair Gary Gensler took to his own account to announce that the SEC’s had been compromised.
In a follow up statement detailing what happened, the SEC said that X support asked the regulatory agency to disable the multi-factor authentication after the agency had difficulty accessing the account.
Read more: ‘A real low point’: Congressman calls out SEC bitcoin ETF drama during House hearing
“MFA remained disabled until staff re-enabled it after the account was compromised on Jan. 9. MFA currently is enabled for all SEC social media accounts that offer it,” the statement said.
The hacker was able to access the account through a SIM swap, which is when a phone number is transferred to another device without authorization.
“Access to the phone number occurred via the telecom carrier, not via SEC systems. SEC staff have not identified any evidence that the unauthorized party gained access to SEC systems, data, devices or other social media accounts,” the SEC said.
Read more: SEC should be held accountable for X account compromise: US senator says
The regulatory body is working with the Federal Bureau of Investigations, Homeland Security, the US Department of Justice and its own Division of Enforcement to track down the attacker. The agency previously disclosed that the FBI and Homeland Security’s cybersecurity department were involved in the investigation.
“Among other things, law enforcement is currently investigating how the unauthorized party got the carrier to change the SIM for the account and how the party knew which phone number was associated with the account,” the statement continued.
Don’t miss the next big story – join our free daily newsletter .
- Gary Gensler
- hack
- SEC
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
BC.GAME Rebrands, Expands $BC Crypto Ecosystem
BC.GAME, a leading name in Web3 gaming, has unveiled a major brand overhaul, introducing a new logo, updated colour scheme, and the bold slogan “Stay Untamed.” The rebrand signals the company’s sharpened focus on crypto integration and its vision to build a global, community-driven Web3 entertainment ecosystem.
Ethereum Rally Stalls Near $2.58K as Holders Take Profits
Ethereum is priced at $2,438, marking a 3.5% decline in the last 24 hours after experiencing a 34% increase over the past week. According to data from Coinglass, open interest has fallen by 2%, suggesting a decrease in leveraged positions. This pullback comes after an impressive rally, during which ETH rose from $1,800 to over $2,500 in just a few days.
Truth Social Denies Memecoin Launch Amid Trump Token Controversy
Truth Social, the social media platform owned by Trump Media & Technology Group, has denied circulating rumours suggesting it is launching a memecoin. In an official post, the platform dismissed the speculation as false, reiterating that it had no involvement in any crypto token launch.
Record Inflows Boost Bitcoin ETFs and Digital Assets
Trending news
MoreCrypto prices
More
