🔔 Hackers gained access to the database of the Authy application on Android, revealing users' phone numbers, Twilio reports. The accounts were not compromised, but the numbers could be used for "phishing and smishing." Twilio encourages users to be vigilant.

Authy is often used for two-factor authentication on centralized exchanges. The attacker gained access through an "unauthenticated endpoint." Twilio claims that user authentication codes were not compromised.

The hack was carried out by cybercriminal group ShinyHunters, which previously hacked AT&T data.