So much work. SMS can be redirected to another number. No need IC, no need Sim Card with target number. No need visit Police or telco, just sit at home. Just redirect all the bank sms to a hacker controlled number. Old vulnerability is old, please get educated dear Malaysians, and tell your banks, No more sms based authentication. Bank Negara should step in and fine or revoke licenses of banks that do not protect their customers money adequately.

Start here: https://arstechnica.com/information-technol...uting-protocol/ and then look up more on SS7 and SMS and how it all works. Then you will understand, no more SMS please.

“The standard DES-based crypt() returns the salt as the first two characters of the output. It also only uses the first eight characters of str, so longer strings that start with the same eight characters will generate the same result (when the same salt is used).”

Not sure if this is actually the case. My 2 cents.

http://php.net/manual/en/function.crypt.php

I booked the hotel online, then the receptionist says need too record down. It is a reputable 4 star hotel with many branches in Malaysia.

Maybe during check out, I will ask for that paper she jotted down.