Database leak reveals 2FA codes for global tech giants

Dripping 2fa
The Asian technology and internet company YX International manufactures cellular networking equipment and provides SMS text message routing services. YX International claims to send five million SMS text messages daily. But codes sent over SMS text messages are not as secure as stronger forms of 2FA, such as an app-based code generator, since SMS text messages are prone to interception or exposure — or in this case, leaking from a database onto the open web. TechCrunch found in the exposed database sets of internal email addresses and corresponding passwords associated with YX International, and alerted the company to the spilling database. YX International would not say for how long the database was exposed.