If you watched to the end, which privacy camp do you self-select into? Leave a comment to let me know. Thanks for watching!

I seem to recall a U.S. Supreme Court case from a few decades ago where they referred to cell phones as basically radios. Which, of course, they are--they just use a different part of the electromagnetic spectrum and are more sophisticated than the walkie-talkies some of us had as kids. I'm not going to change anything I'm doing, but I'm glad to know about this vulnerability. I'm also glad I'm not someone who is a juicy target (or, at least I wasn't until I left this comment). Thanks for the great explanation and context!

Everyone MUST also remember, the weakest MFA/2FA option that is *active* for auth is the maximum strength of your login security.

TL;DR nothing to do for now. Most banks I use have text 2nd factor as the only option.

So for nearly 50 years we are using this unsecure SS7? And no one came up with SS8, SS9....yet, as in being more secure with every iteration i mean? Why not? Is it so hard to replace? Not backwards compatible with existing phones? Not allowed buy security agencies worldwide (CIA, Mossad, DGSE, MSS, MI6....to name but a few )? I mean you do know that the one that comes up with a higher security protocol will dominate the cellphone market but also get Eppsteined or Mcafeed like really fast...

Email - created first in 1971 and still used today has a lot of security isuses - these old technologie are great, but needs a total rewrite from ground up to be secure for today's world.

Do VOIP numbers like Google Voice get affected too?

When you sign up for some counter service, you must give you a phone number away and you don’t have other kind of meanings

Would love to see a review vid on the Above Phone if you end up using it for a long enough period

Josh, I’d like use one of the alternative MFA schemes but none of them is as ubiquitous as using a text or email for receiving an authication code. Have to use multiple solutions is as big a pain as trying to keep up with password management, if not bigger. IMHO anyway.

hey josh! thanks for the real captions! i appreciate it!

I work in the telecom industry. The best solution to avoid Signaling System 7 (SS7) risk is to sunset 2G and 3G and only support 4G and 5G. The latest standard, 5G, has the best encryption to help maintain privacy. Later in the video, Josh points out that being seen as a mobile provider is difficult, so the average bear cannot easily do SS7 attacks.

I never do any business on a phone, as in no banking, I have a flip phone so no malware attacks and where possible (banks) I do give only Google Voice. MAny banks do not want VOIP numbers and restrict, so I tell them this is all I have and they either hand up nad then call back on my registered number, or send emails or ask security questions. NO Sim swaps for me are even possible.

Josh. Your link to fb2 key doesn't work. Please update it.

So here the choice: Either keep this hack happening in the world, or make carrier to force a planned obsolescence on tech.

Hey boss, what's your thoughts on Grapheneos with a burner sim?

So can this be used silently on someone without them knowing or is there a way to check/know of you are a victim of this attack? I guess what im asking is how do I know this hasnt already happened to me and someone out there isnt already intercepting and collecting all my data?

Banks still using SMS for 2FA 😭

What using FaceTime Audio over standard mobile and iMessage over sms?

Is this the reason that why 2g and 3g networks are getting shutdown.

is google voice encrypted? since it is a voip, is it more secure than the cellular sms?

Because US telcos are 10years behind, if your telco is communicating with you in-band then you need to explain why you’re leaving them.

Completely freaked out! Now I know why a certain person always knows everything. How much do I have to spend to fix this?

Your *2FA* link is dead!

I watched the entireveritasium video, but I'm not clear if a data-only cellular plan (where you don't have a phone number) would be subject to the attack. I want to say "no" as this is exploiting an authorization/tracking mechanism for the phone number, but I'm not sure if it's actually looking for the exact phone number or the SIM the phone is authorized on.

4g and 5g are more secure? Doing the test, the video doesn't mention what Linus is using...

Not specific to this video however if you are using virtual card services such as privacy or clutch can you start using these services while having a credit freeze already in place?

Brilliant 👏

Efani the sim company eliminates this but its like 999$ usd per year for this service. oh you mentioned it I commented at the start

Is a PIN/PUK code on the SIM sufficient or no?

As if hacking Linus is a "challenge" at this point.

efani works in Europe?