⚠️ How SMS 2FA Destroys Authentication Logic

A recent experience while changing my account info reminded me why relying on telecom routing for security is an absolute nightmare, and why the infosec community needs to kill off SMS authentication for good.

🚩 Battle.net SMS 2FA Failure and Security Theater:

I attempted to log into Battle.net using a phone number I had legitimately owned for months, assuming I had added to my alt profile when I switched to that number. Instead of asking for a secondary 2FA, the platform sent an SMS code, accepted it, and provided me access to a complete stranger's account.

🚩 The Architectural Flaw:

The platform's backend treated a single SMS verification token not as a supplementary second factor, but as a primary identity credential. Because a stranger had left my number on their account months prior, the system assumed current possession of the SIM trumped all other security metrics.

🏳 The Legal Reality of Intent:

From a legal standpoint (like the CFAA), navigating into an account this way lacks the malicious intent required for criminal unauthorized access (Mens Rea); it's an accidental entry caused entirely by broken corporate infrastructure. But the fact that a user can simply input their own phone number and inadvertently hijack a stranger's digital life without a single exploit is a staggering failure of AppSec logic.

✅ The Solution:

SMS is not identity proof. It is a highly volatile, easily routed carrier token. If a platform allows SMS to override or bypass a standard password barrier without out-of-band verification (like a mandatory email confirmation), it isn't secure.

Stop letting telcos act as your root of trust. Switch to cryptographic hardware standards like NFC Yubikeys or standard TOTP apps.

#CyberSecurity #Infosec #MFA #SecurityTheater #AppSec #Yubikey #CFAA #Hacking

Well, my 8U 10" home lab rack is finally completed.

Luckily there are no power bricks involved but my PDU does have several wall warts plugged into it.

Also, my Raspberry Pi cluster and the switch both exit out the front, but the layout alignment was completely wrong. Plus, a single 0.5U patch panel was too far away for short cable runs, and I refused to snake thick Cat6 from back-to-front in such a tight space.

The solution? I stacked two 0.5U panels to fill a 1U gap, using the second one as a literal front-facing data bridge. To avoid severe bends on the 0.5ft patch cables, I offset the connections by two keystones diagonally. It naturally curves the cables, relieves port tension, looks incredibly clean, and standard Gigabit doesn’t care about the extra hop.

It’s not stupid if it works

Full layout:

Bottom frame: There's a 12V 120mm fan on the bottom with a dust cover for air intake/cooling.

It's a GeeekPi fan but I may upgrade it to something a little more powerful later on.

1U & 2U: Pi cluster right above the 120mm fan to help ensure they don't get cooked by having other equipment below them.

1x Pi for IDS Tripwire
2x Pi on separate VLAN with strict rules to mess with OWASP Juice Shop and other pen testing environments.

3U: 2x 0.5U patch panels

4U: 8 port managed switch

5U: vent panel

6U & 7U: Protectli Vault w/ stateful firewall and IPS

8U: vent panel

The PDU is on the back (2U) with a blank panel below it to help create a chimney effect for the fan and a brush panel above it where the power cord comes out.

#HomeLab #Networking #RaspberryPi

⚠️ Disclaimer: For educational use only. All activities shown were performed legally on an authorized CTF platform. Unauthorized access to systems is illegal and carries severe criminal penalties.

This video demonstrates a Time-of-Check to Time-of-Use (TOCTOU) race condition exploit (CVE-2026-3888), which was a key component of the "Snapped" machine on Hack The Box.

"Local privilege escalation in snapd on Linux allows local attackers to get root privilege by re-creating snap's private /tmp directory when systemd-tmpfiles is configured to automatically clean up this directory. This issue affects Ubuntu 16.04 LTS, 18.04 LTS, 20.04 LTS, 22.04 LTS, and 24.04 LTS" (Common Vulnerabilities and Exposures, 2026).

https://www.cve.org/CVERecord?id=CVE-2026-3888

#EthicalHacking #offsec #penetrationtesting #Linux #cybersecurity

Current Cybersecurity and OffSec Personal Library:

• Linux Bible

• The Hacker Playbook 3

• Linux Basics for Hackers

• Operator Handbook: Red Team + OSINT + Blue Team

• RTFM v2

#cybersecurity #OffSec #OSINT #Linux #EthicalHacking
 

My home lab is nearly finished. Custom 2U Protectli Vault shelf is almost here.

Switch to Linux   ✅
Switch to GrapheneOS 📱 ✅
Start building home lab   ✅
#cybersecurity #homelabs #EthicalHacking #Linux

I just migrated to @defcon.social from @infosec.exchange!

My principles are very straightforward:

1. Transparency is of utmost importance. This doesn't mean you have to make your entire life an open book. It just means being honest and authentic.

2. Mass surveillance is a violation of our civil liberties. In relation to the first point, "nothing to hide" doesn't mean "everything to see."

3. In relation to point two, I am completely against government and corporate overreach. That doesn't mean I am anti-civilization or anti-government. I am very much pro-security but I am also a supporter of limited government and civil rights.

4. Nuance matters. Reference my first three points made.

My opinions are subject to change granted I am presented with evidence to logically form a new conclusion.

I am empathetic but I have also seen and experienced a lot of manipulation. I am not quick to give anything I see or read on the internet validity. The data is the only thing that matters in this world; talk is cheap, show me the code.  

#civilliberties
#civilrights
#NoBIGTech
#endmasssurveillance
#opensource
#foss
#showmethecode