Jul 192011
 July 19, 2011  Posted by  Breaches

Byron Acohido reports:

Three giant U.S. cellphone service providers do not require consumers to use voice mailbox PIN codes, making their customers vulnerable to the kind of hacks fueling the British tabloids scandal, security and privacy experts say.

AT&T, T-Mobile and Sprint allow subscribers to access voice messages without entering a Personal Identification Number.

This practice makes it trivial for an intruder to fully access the voice mailbox associated with any valid phone number, using a tried-and-true technique dubbed “caller ID spoofing.”

Read more on USA Today.

Sorry, the comment form is closed at this time.