Two OKX accounts were stolen by hackers who created new API keys with trading and withdrawal permissions after exploiting SMS and email verification to hijack phone codes. The affected users did not have Google Authenticator enabled. OKX responded by compensating the victims and plans to add mandatory Google Authenticator for enhanced security. Researchers found security flaws in OKX settings, including the ability to bypass Google Authenticator verification.
OKX confirms a few user accounts were drained via identity theft https://t.co/08jq9PEbx9
On June 12, OKX’s latest iOS 6.71.1 version cancelled the SMS verification code for withdrawals and replaced it with double verification via email and authenticator. OKX also stated that someone forged legal documents and obtained the transaction information of a very small… https://t.co/JKc18CW4Jy
[WU BLOCKCHAIN] #OKX Compensates Users After Account Hijacking, Introduces Mandatory Google Authenticator for Enhanced Security https://t.co/rqOHboOHlW
JUST IN: OKX TO ADD MANDATORY GOOGLE AUTHENTICATOR AFTER TWO USERS' ACCOUNTS WERE STOLEN FOLLOWING A RECENT BREACH OF SMS NOTIFICATION SECURITY
Exclusive: Two users whose OKX accounts were stolen have received full compensation from OKX. The suspected cause was the hijacking of their SMS and email. OKX has decided to add mandatory Google Authenticator in the future to avoid similar incidents from happening again. https://t.co/MmRSLXohBt
UPDATE: OKX reportedly has serious security shortcomings, including the ability to bypass Google Authenticator verification. More details…↓ #OKX (By: @ComposableD) https://t.co/sClz1jEq1d
Researchers have identified security flaws in @okx settings. Analysts conducted an analysis on June 10, 2024, spending half an hour on it. During this time, they found that the system allows bypassing Google Authenticator and switching to lower security checks (SMS, adding an… https://t.co/ImKrVggMya
OKX SIM-swap leads to discovery of 2FA security flaw https://t.co/zT21zc8iEK
🚨“OKX HAS MADE SIGNIFICANT COMPROMISES IN SECURITY” - REPORT🚨 - In the wake of reports of two @OKX user accounts being hacked, Asia-focused media outlet Wu Blockchain decided to spend just half an hour analyzing the exchanges user security settings… “the results were quite… https://t.co/CATopYlaOG https://t.co/FuTu2JYqQk
🚨BREAKING: "SERIOUS SHORTCOMINGS EXIST IN OKX SECURITY SETTINGS" ~ WUBLOCKCHAIN
Research: Serious Shortcomings Exist in OKX Security Settings OKX does not require mandatory Google Authenticator, can use email and SIM, and has a lot of other problems. Recently, some users claimed that their OKX accounts were stolen. Read more https://t.co/v4puf8qSs3 https://t.co/3NLc1hfByK
OKX responded that it has contacted the relevant users and is currently investigating the relevant situation. The community feedback shows that OKX's mandatory use of Google Authenticator is relatively rare, and email + SMS can be used for verification, which increases the risk… https://t.co/MmRSLXohBt
[𝕏] Two #OKX accounts were stolen this morning. Hackers created new API keys with trading and withdrawal permissions, exploiting SMS and email verification to hijack phone codes and withdraw coins. None of the victims used Google Authenticator
👀@SlowMist_Team reports that two #OKX accounts were compromised earlier today, with the hackers creating new API keys that granted them trading and withdrawal capabilities. Interestingly, none of the affected users had Google Authenticator enabled for additional security.…
According to Slowmist, two OKX accounts were stolen this morning, and hackers created new API Keys with trading and withdrawal permissions. None of the victims used Google Authenticator, but instead used SMS or email verification. Hackers hijacked mobile phone verification codes… https://t.co/I9irUcfe6Q