Again, hackers exploit the SS7 protocol loophole to steal bank accounts.

In 2014, German security researchers have warned various digital companies and internet users of the disadvantages of the SS7 communication protocol globally to this day, after so many proofs and applications on the loopholes the Protocol has become public disclosure, based on espionage and interception of letters and calls, to penetrate the various sensitive accounts of Kwatsab, Facebook and Tilgram

 

The O2 German Telefonica company announced the exposure of a group of bank accounts to theft by exploiting a loophole in the SS7 protocol, where the hackers managed to divert funds from their own accounts

In short, hackers have carried out large hacking operations for many German bank accounts by various roads, kalsbam, loopholes.. and access to the confidential numbers of these accounts, but the problem that they have encountered is the way the money is transferred, and it requires a binary or 2FA verification process, which is done by checking the phone by sending a secret code to a phone. The victim, of course, hackers will receive the victim's phone number by accessing the bank's electronic platform or information-gathering operations and thus exploiting the SS7 loophole to intercept the message while verifying the conversion process

It is dangerous that such loopholes cannot be repaired, the protocol is a global system and is not easy to change, and thus Alabenak does not have the power to patch the gap, but the process of moving away from bilateral phone verification and activating other features is the most successful way to reduce these attacks at present.