@foltzwerk attacker created @ATT Messages account (on website), added @j's phone# to it, was able to view SMS/texts.
> @MozSF
17:30 Quiet Writing(blogging @ATT exploit)
18:30 Homebrew Website Club Meetup
Join us!
indiewebcamp.com/events/2014-05-21-homebrew-website-club
@harryh exploit allows other(s) to read @ATT mobile SMS/texts.
Thus REMOVE AT&T numbers from recovery/TFA settings in:
* Facebook
* Github
* Gmail
* financial institution profiles
This is not a hypothetical. Attack in progress.
Twitter @Safety vulnerability!
If cell service @ATT, REMOVE phone# in profile
@x @j compromised http://indiewebcamp.com/File:2014-05-21-twitter-j-compromised.png#file
t