High Security Threat - Receiving OTP via a Local Private Number

You will receive your OTP message from a local private number instead of from your authentication service provider.

One Time Password (OTP) is a service in which users provide an extra layer of security. This is mostly used when accessing accounts and carrying out financial transactions etc. to identify the real user of the account. When a user request for an OTP, it comes as an SMS message and the sender of that OTP will be the actual service provider. Ex-If you request an OTP from Google, the sender of that OTP would be Google itself and you will receive a message from Google.

If you receive your OTP from a local private number, instead of from your service provider it means that the message has come through an unauthorized third party who has access to your OTP messages. They normally change their content slightly except the OTP code and send it to the user through a private number.  Please refer above images for example.

 

Impact: 

  • Loss of access to your online accounts such as social media, emails, online banking, etc.
  • Financial loss

 

Solution/ Workarounds:

  • Use authentication application developed by service providers instead of OTP SMS.

Ex-Google Authenticator, Facebook Authentication app, Microsoft Authenticator, etc.

  • If the OTP is essential, request it through a voice call rather than an SMS message.
  • If you received an OTP message through a private number change your password immediately and set proper account recovery options.

 

Reference: ALERT-Sri Lanka CERT|CC - Receiving OTP via a Local Private Number

Rate this item
(0 votes)
K Dinesh Kumara

K Dinesh Kumara

Founder, Director, and CEO

KDKTEC & PC World Online Magazine

I'm an Entrepreneur & an Educator. I like Psychology and ICT. I'm a Workaholic too. Learning is my Hobby.

Address: 5th Mile Post, Nannapurawa, Bibile, Sri Lanka. 91519.

Telephone and SMS: 070 204 2691

Skype ID: kdktec

E-Mail: admin@kdktec.netkdkrun@gmail.com

Website: https://www.kdktec.nethttps://www.pcworld.lk

My Upwork Profile: https://www.upwork.com/freelancers/~01346a1284f2b07b13

 

Social Network Channels

FaceBook: https://www.facebook.com/KDineshKumarahttps://www.facebook.com/kdktechttps://www.facebook.com/pcworldsrilanka  

YouTube: https://youtube.com/c/KDKTECPCWorldOnlineTelevision

Twitter: https://twitter.com/kdktec

Leave a comment

Please do not enter any marketing or illegal statements | කරුණාකර අලෙවිකරණ හෝ නීති විරෝධී ප්‍රකාශන ඇතුළත් නොකරන්න.

Subscribe to Weekly Email Newsletter




Joomla Extensions powered by Joobi

Articles Archive

Articles Calendar

« May 2021 »
Mon Tue Wed Thu Fri Sat Sun
          1 2
3 4 5 6 7 8 9
10 11 12 13 14 15 16
17 18 19 20 21 22 23
24 25 26 27 28 29 30
31            
015150344
Today
Yesterday
This Week
Last Week
This Month
Last Month
All days
28561
32665
28561
14373252
670210
1459867
15150344
Your IP: 3.238.96.184
2021-05-16 21:36

Video Of The Day

Go to top