"A Leaky Database Spilled 2FA Codes for the World's Tech Giants"

YX International has secured a database that exposed one-time security codes that could have given access to Facebook, Google, and TikTok accounts. The Asian technology and Internet company manufactures cellular networking equipment and offers SMS text message routing services. SMS routing facilitates the delivery of time-critical text messages to their intended recipients across different regional cell networks and providers, such as a user receiving an SMS security code or link for logging in to online services. Anurag Sen, a security researcher, discovered that the company left one of its internal databases exposed to the Internet without a password, letting anyone access sensitive data using only a web browser and the database's public IP address. This article continues to discuss YX International's exposure of Two-Factor Authentication (2FA) codes.

TechCrunch reports "A Leaky Database Spilled 2FA Codes for the World's Tech Giants"

Submitted by grigby1