The US Securities and Exchange Commission (SEC) revealed that multi-factor authentication in its X-profile was disabled prior to the publication of fake news about the approval of spot Bitcoin ETFs. The SEC stated that an unauthorized party gained control of the mobile phone number associated with the account through a SIM-swapping attack. The attacker then changed the password for the account after gaining control of the phone number. The SEC disclosed that an employee had removed multi-fact...