Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
V
V
velikanoff2017-11-17 21:45:39
iPhone
velikanoff, 2017-11-17 21:45:39

Is it possible to intercept sms messages in iPhone 5s?

The problem in short is that someone has access to SMS messages and has leaked money from the Qiwi wallet.
Today the following situation occurred:
1. I received an SMS from Sportmaster with "Verification code ..." (I think you never know who can try to recover the password, I still have the phone).
2. After 5 minutes, an SMS about changing the password arrives in the mail. (gmail.com)
3. After 2-3 minutes, an SMS is received about changing the password to Qiwi
4. After 2-3 minutes, an SMS is received about creating a payment towards someone else's Qiwi wallet and a secret code (which should not be shared with anyone). And literally immediately comes an SMS about the successful execution of the operation (that is, someone still found out the code from the SMS).
p.4 was repeated several times until the money on the card ran out.
The most basic question: how does a scammer read SMS? (Is it possible to do this without a phone? If it's a virus, how can it be detected? Is there another way?)
- Phone: iPhone 5s with official firmware, without Jailbreak. Updated to latest version.
There is a pin code on the phone, I did not give it to anyone.
- I haven't installed any apps in the last two weeks. All previous apps are sourced from the official AppStore (and these are all popular verified apps).
- Didn't open any suspicious sms/mms/links.
- I checked access to iCloud - no one went into it, did not reset passwords.
- I called the mobile operator - they say that there were no duplicates / reissues of the SIM card.
From suspicions - 3 months ago I changed the screen (the previous one broke). The phone was in the service for about 30 minutes and, accordingly, the employees of the iCloud password service did not know. (that is, the question here is - could they upload malware?)
PS I called Qiwi, they are dealing with the problem. On the Internet, it is recommended to reset the phone in order to probably remove the virus, but it’s important for me to figure out if the problem is in the virus so as not to be substituted next time.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

7 answer(s)
Report
M
MazZzDaI, 2017-11-20
@MazZzDaI

If it is possible to read SMS from your pc or mac, then the root of the problem is most likely in this very pc or mac.

Report
B
Boris Korobkov, 2017-11-18
@BorisKorobkov

Is it possible to intercept sms messages

Available. For example, https://navalny.com/p/4856/
But in your case, this method is unlikely.
Probably, on Qiwi they clicked "forgot password" with recovery on gmail. That is, the attackers had access not only to SMS, but also to your email. This is not just SMS interception, but access to the phone. Probably malware (not necessarily a virus).

Report
T
tawiba, 2017-11-18
@tawiba

Everything is much easier to see in the personal account of your operator, where you can make and read SMS forwarding.

Report
V
Valentine, 2017-11-18
@vvpoloskin

Three options:
1) a virus on the device
2) a vile operator for your number (google attacks on ss7, it takes a long time to paint here)
3) issuing a duplicate SIM card to another person by the operator 's employees
The first option is to google viruses for your firmware (full version).
The second option is to do nothing.
The third option - a complaint to the local Roskomnadzor will sober up the operator and force him to show some kind of activity, though after some time

Report
D
d22b, 2017-11-19
@d22b

Eh, if in the region of paragraphs 3-4 to disable the phone's access to the Internet, then it would be possible to understand the Trojan or not.
And so you can try to make an image with the firmware of this phone and another of the same and compare (I really don’t know how to do this, but in theory if there is a jailbreak, then this is possible). But on the other hand, if the Trojan was able to install, then it could also have already left.

Report
C
CodARM, 2017-11-20
@CodARM

In general, everything is simple. We bind the phone to the poppy, = sms are duplicated on it, using iMessage. And how they got access to AppleID is another question. Better protect your Apple account.

Report
A
Alexey, 2017-11-20
@fapsi

If the Trojan is on an iPhone, then go through all installed applications. Request a detailed decryption of network connections from the telecom operator during the period of received SMS. Check outgoing SMS.
The Mac receiving SMS may be out of business if it was turned off at the time. Or wool and Mac, also with a detailed decryption of network connections.
SS7 or special equipment - well, the road is used for gutting kiwi.

Similar questions
V
Vladislav2015-03-12 17:33:11
Why does google ads steal focus when opening a site on the mobile version of google chrome? 0Reply
V
vlvit2017-03-20 21:46:56
Videophone with autoplay on iPhone? 1Reply
A
Alexander-K2015-04-08 17:40:41
How to test local layout on iPhone on the fly? 1Reply
P
Pavel Makukha2015-04-17 13:04:49
How to forcefully remove Button shapes from buttons? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question