Bug Exposed T-Mobile Data With Just a Phone Number

Share
Bug Exposed T-Mobile Data With Just a Phone Number

Until recently, a bug on a T-Mobile website gave hackers access to personal details relating to wireless subscriber accounts. Saini notes that T-Mobile offered him a $1,000 reward as part of its bug bounty program.

Though the information revealed by this vulnerability may not have been as sensitive as things like addresses and social security numbers, Motherboard notes that the information that was compromised could be enough to carry out social engineering attacks like phishing. They apparently used the stolen information obtained via the hack to trick T-Mobile employees into handing over new SIM cards and hijack phone numbers by impersonating the rightful owners of the line.

"T-Mobile has 76 million customers, and an attacker could have ran a script to scrape the data (email, name, billing account number, IMSI number, other numbers under the same account which are usually family members) from all 76 million of these customers to create a searchable database with accurate and up-to-date information of all users."

So, even though the vulnerability has been patched, it sounds like subscribers should still be wary of anyone contacting them claiming to be a representative for the company. T-Mobile said that the issue affected only a small number of its customers, so perhaps the worst case scenario laid down by Saini wasn't realized.

T-Mobile said in a statement that "we were alerted to an issue that we investigated and fully resolved in less than 24 hours".

With Equifax data breach still lurking in everyone's mind and Accenture's irresponsible security protections only having come to light this week, this is yet another potential mega breach, where hackers didn't even need to breach into T-Mobile's network as everything was available to them thanks to a security bug.

"We have confirmed that we have shut down all known ways to exploit it", T-Mobile said.

Yesterday, however, an anonymous hacker informed Motherboard that hackers had been exploiting the T-Mobile glitch for quite some time.

Share

Advertisement

Related Posts

Seth MacFarlane says Oscars dig was meant to shame Weinstein
MacFarlane adds: "There is nothing more abhorrent and indefensible than abuse of power such as this". A spokesperson for Weinstein has since released a statement denying the claims made against him.

Justice (r) Javed Iqbal takes charge as NAB's new chief
Justice (retd) Javed Iqbal was among the three names recommended by the opposition leader for the post. Justice (retd) Iqbal was appointed as a Supreme Court justice in 2000 and retired in 2011.

Average Gas Price Down Across Georgia
Depending on the affect Hurricane Nate has on refineries in the Gulf, the drop in gas prices could stall and reverse direction. Gas prices across Georgia have been steadily dropping over the last month and should continue to do so in the near future.

Harvey Weinstein: Wife Georgina Chapman leaves accused producer
Weinstein has denied all charges, according to a statement from his spokeswoman Sallie Hofmeister, circulated among USA media. In a statement, she did not say whether her campaign would donate contributions made by Weinstein, a major Democratic donor.

Caesars Entertainment Corporation (CZR) has its outstanding shares of 152.56 Million
The stock now shows its YTD ( Year to Date ) performance of 48.82 percent, whereas its Weekly performance stands at -5.24%. COPYRIGHT VIOLATION NOTICE: This article was originally posted by Week Herald and is the sole property of of Week Herald.

Who Is Asia Argento?
"In a tweet linked to the New Yorker story, Bourdain wrote: ".@AsiaArgento I am proud and honored to know you. Argento is now dating chef Anthony Bourdain and was previously married to filmmaker Michele Civetta.

Watch Princess Nokia Kick a Racist Off New York City Train
University spokesperson John Beckman has confirmed that the man, Paul Lawson did not attend NYU Law. Jezebel has reached out to Frasqueri for comment and will update with any response.

Nafta talks: Trump open to a bilateral Canada-US trade deal
Stephen Harper says he believes Donald Trump is genuinely willing to pull the plug on the North American Free Trade Agreement. President Donald Trump is welcoming Canadian Prime Minister Justin Trudeau for talks expected to focus on trade and aviation.

Harvey Weinstein admits to groping model on police recording
In the wake of the report, Vance, who is running for his third term in October, returned the donation. They're also shaking up the New York City criminal justice system.

Ex-Saints DB Tracy Porter Arrested on Battery, Drug Charges
According to WWLTV.com , "The police officer taking the report noted that the woman had fresh bruises consistent with her story". Porter most notably returned an interception for a touchdown to clinch the Saints' victory in Super Bowl XLIV.

© 2015 ExpressNewsline. All Rights reserved.