NASA aerospace engineer • Discord security dev • Co-founder @goodknightbot • Good Knight security bot: https://t.co/dsz8TRLkPT
Sep 1, 2023 • 12 tweets • 3 min read
SMS 2FA has become the boogeyman on 𝕏 but there's something 𝗲𝘃𝗲𝗻 𝘄𝗼𝗿𝘀𝗲...
SMS password recovery
I'm guessing you're more vulnerable than you know but, even worse, 𝕏 is 𝗹𝗲𝗮𝗸𝗶𝗻𝗴 𝘆𝗼𝘂𝗿 𝗶𝗻𝗳𝗼 𝗳𝗼𝗿 𝗮𝗻𝘆𝗼𝗻𝗲 𝘁𝗼 𝗳𝗶𝗻𝗱! Let's dive in.
Did you know that you can search for 𝗮𝗻𝘆 user and find parts of their email and phone number using the 𝕏 password recovery tool?
You're not even required to verify before seeing this info! Hello @elonmusk
As we all know, #Hashmasks have secrets hiding in the images.
What if I told you that you could've easily found all of the greatest secrets within 5 minutes?! And that these Hashmasks are currently super undervalued!! @TheHashmasks
Here's how: 🎭🎭🎭
Before I get into the details, I want to credit @philipplgh for the amazing work he's done for the #Hashmasks community.
We were looking into this at the same time and he published a similar investigation that I will be expanding on.