According to the recent report, recently the Instagram is starting working on a two-factor authentication solution which would even not require a phone number of the user’s. Instagram just has confirmed that now it is working on the more secure and protected method, immediately hours after a well-known Motherboard investigation on the SIM hacking which was published prior. Like some other social media platforms now the upcoming option will allow the user to authenticate with the code-generating applications like Google Authenticator and also with the Authy.
Although the confirmation from the Instagram’s was probably encouraged by the investigation, it seems like the company has been working on moving beyond any of the phone numbers for some time. The Engineer and also tipster Jane Manchun Wong was discovered an archetype version of the updated two-factor authentication feature in the Android version of the Instagram’s APK code and which is also publicized on Twitter.
However, Instagram allows the users to recover their account easily and also log in on some new devices, as that the user can easily verify their identity through a phone number which is directly associated with your account. But, the Motherboard article makes it very clear that a rising new form of the online theft has been now resulted in the hackers illegitimately gaining access to a user’s phone number and also tying it to a new SIM card. And they only do so by using a bit of their information like a social security number which perhaps leaked during one of the innumerable data breaches only to trick any of the telecom customer service agents into the reassigning phone number to a new SIM.
And from there the hackers can easily extract a victim for the financial gain, or they can use the phone number and also its recovery benefits only to reset the Amazon, Instagram, Twitter, and some other social media or online accounts. According to the Motherboard report, hackers are specifically targeting infrequent and also the lucrative Instagram and Twitter handle because these go for the high sums on the virtual underground markets.
Many of the tech companies have built tools to protect the users against the susceptibility of SMS-based two-factor authentication. For instances, the Google already has its Authenticator application which uses the randomly generated numeric code with a severe time limit, and now the Facebook is using a similar tool which is built into the Facebook application itself. It is very good to see the Instagram is now following the suit.