Your Ongoing pwnage, your phone #, and why SMS is a bad idea
Another day another breach. ~550M facebook users have their, well, everything including their colonscopy results, released online for cheap. And, this includes (for many) their phone number. Should you care?
Fortunately its the work of minutes for someone to steal your phone number by walking in to a phone shop in a mall and knowing one or two facts that are *in the same breach*. “I lost my sim”. OK, we just need to verify your account, first name, last name, date of birth, phone number, here you go. Boom, now they go to your bank, click the “i forgot my password”, and, well, the bank txt them a link to reset it.
So, head on over to https://haveibeenpwned.com/ and enter your phone number (in E.164 format I think, side note: all phone numbers start with a + sign and then a country code or you are doing it wrong… go fix your address book now). The good folks there will tell you if you’ve been breached. Welcome to the public domain.
While you’re at it, open up your WhatsApp, and add me on Signal. Same phone number. After may, whatsapp will die for me.