Analysis | BiKi trading platform truth disclosure, hacker hijacked third-party SMS verification code to tamper with user password

Recently, according to the joint analysis of the Weiwei Security Lab (johnwick.io) and the BiKi trading platform, we confirmed that the hacker attacked the third-party SMS verification code channel by attacking the log and other behaviors of this security incident. The key information is distributed through the verification code channel so that the hacker can obtain sensitive information. This is a typical side channel attack (SCA) in hacker attacks.