The Decentralized Social Media Platform Friend.tech Enhances Security with Two-Factor Authentication
The team behind Friend.tech, a decentralized social media platform, has taken action to address a series of SIM-swap attacks targeting its users. They have introduced a crucial security enhancement in the form of Two-Factor Authentication (2FA) password feature. This feature aims to provide additional protection for users whose cell carriers or email services have been compromised.
Friend.tech Users Can Opt for Additional Password Setup
With the new 2FA feature, Friend.tech users will be prompted to set up an additional password when signing in on new devices. It is important to note that neither the Friend.tech team nor the Privy teams will be able to reset these passwords. Therefore, users should exercise caution when using this feature.
Increase in SIM Swap Attacks on Friend.tech Users
Friend.tech has witnessed a series of SIM-swap attacks since September, which have raised concerns and criticism regarding the platform’s initial response. The attacks resulted in the theft of approximately 109 Ether (ETH), equivalent to nearly $500,000, with one hacker stealing almost $400k from various Friend.tech users.
To mitigate the risk of SIM-swap exploits, Friend.tech had already implemented security updates on October 4, allowing users to add or remove different login methods. Despite some criticism about the timing of the 2FA implementation, many users welcomed the added layer of security.
Understanding the SIM-Swap Attack Modus Operandi
Jason Yanowitz, the founder of Blockworks, shed light on how SIM-swap attacks work. Attackers send text messages requesting a number change, and users are required to respond with “YES” or “NO.” If the response is “NO,” the user receives a legitimate verification code from Friend.tech and is prompted to send the code to the scammer’s number. Failure to respond within two hours allows the requested change to proceed, potentially compromising the account.
Hot Take: Friend.tech Takes Proactive Measures to Secure User Accounts
In response to a series of SIM-swap attacks, Friend.tech has introduced Two-Factor Authentication (2FA) to enhance security for its users. This move allows users to set up an additional password when signing in on new devices, providing an extra layer of protection against compromised cell carriers or email services. While some criticism has been raised regarding the timing of this implementation, many users appreciate the added security. It is crucial for users to be cautious and safeguard their passwords as neither Friend.tech nor Privy teams can reset them. By taking proactive measures like implementing 2FA, Friend.tech aims to mitigate SIM-swap attacks and protect user accounts.
By
By
By
By
By