Security researchers found vulnerabilities at AT&T, T-Mobile, and Sprint that could have exposed customer data

It hasn't been a good week for telecommunications companies: security researchers have uncovered security flaws with systems at AT&T, Sprint, and T-Mobile that could have left customer data accessible to bad actors.

Yesterday, BuzzFeed News reported two flaws that left customer information information vulnerable at AT&T and T-Mobile. In T-Mobile's case, an "engineering mistake" between Apple's online storefront and T-Mobile's account validation API allowed for an unlimited number of attempts on an online form, which would allow a hacker to use commonly-available tools to guess an account PIN or the last four digits in a customer's social security number, in what's called a brute-force attack.

A similar problem occurred with phone...

Continue reading…



via The Verge - Tech Posts https://ift.tt/2P3rene
RSS Feed

If New feed item from http://www.theverge.com/tech/rss/index.xml, t

IFTTT

Comments

Popular posts from this blog

Evernote cuts staff as user growth stalls

The best air conditioner

We won't see a 'universal' vape oil cartridge anytime soon