I recently had a friend who was hacked via a cell phone sim swap. The hacker cloned his android phone and was able to restore apps and passwords via the cloud. The hacker compromised his accounts where they lost both funds and crypto. According to the FBI, this has become more common in the last five months. Unfortunately, many attacks are from a lack of security or via social engineering.
Some good practices:
1. Use a strong password and a secure backup or password manager
2. Limit what is stored in the cloud
3. Use 2FA or an Authenticator
4. Password protect and Sim lock your phone
5. Use a secret pin or passphrase with your cell provider
6. Use a separate email address for banking which is not on your phone
7. Don’t connect to random unknown WiFi
8. Don’t respond or provide information to unsolicited calls
9. Avoid unknown links, emails, and pop-ups
10. Don’t open unknown attachments
11. Turn off any preview functionality
12. Use a virus and malware scanner plus intrusion detection
13. Use multiple accounts in case one becomes compromised
14. Monitor balances for unconfirmed transactions
15. Store crypto on a hardware wallet “Cold Storage”
16. Use an identity monitor to watch for data leaks
This is not the end all, be all solution but these few ideas can help to improve security. As technology increases and finances go more digital, it's important to remain secure and protect your identity.
https://www.reuters.com/article/usa-cyber-amazoncom/exclusive-u-s-treasury-breached-by-hackers-backed-by-foreign-government-sources-idUSL1N2IT0HS