AT&T, T-Mobile Customer PINs Left Exposed by Security Flaws
Two different security flaws affecting the customers of AT&T and T-Mobile were revealed this week. The security gaps could have given hackers access to customer account PINs, which would in turn allow them to potentially hijack the customers' SIM cards. AT&T customers were left vulnerable by the insurance provider Asurion. When initiating claims through Asurion's web site, hackers could have gleaned PINs through a form that failed to have a limit on attempts to enter the PIN correctly. This opened the door for brute-force attacks. T-Mobile customers were left vulnerable by the Apple Store app on iPhones. The issue left an opening on a web page that bridged the Apple Store with T-Mobile's account verification system. Similar to the Asurion issue, the Apple Store didn't place a limit on the number of attempts for PIN entry. This also permitted a brute-force attack to guess the number. Both Asurion and Apple resolved the lapses after they were brought to their attention. The T-Mobile vulnerability left some 77 million customers exposed. The number of customers impacted at AT&T is not known. SIM hijacking allows hackers to essentially copy the identity of a legit phone that can then be used to verify identify in apps and services that used SMS-based two-factor authentication.
Aug 12, 2020
Microsoft is finally ready to launch the unique, dual-screen Surface Duo device it first revealed almost a year ago. The Android 10 device has two 5.6-inch OLED displays, joined by a narrow 360º hinge, which can work together as one 8.1-inch display.
Sep 1, 2020
Samsung has revealed new details of its Galaxy Z Fold2 foldable phone, the successor to last year's pioneering Galaxy Fold. While Samsung has improved or refined most aspects of the design — including the hinge — the much larger outer display stands out, having grown from 4.6 to 6.2 inches, and now protected by Gorilla Glass Victus.
Jan 8, 2021
Motorola today unveiled a full lineup of four new affordable phones, including three g-series models ranging from $169 – $299 and one 5G model for $399. All four feature large batteries (4,000 – 5,000 mAh) and large displays (6.5 – 6.8 inches).
Sep 23, 2020
Samsung has a new, more affordable Galaxy S20 phone that starts at $699 while keeping the S20 specs and features that Samsung says surveyed users cared about most. The Samsung Galaxy S20 Fan Edition (abbreviated "FE") keeps flagship-level specs in many areas.
Sep 17, 2020
Verizon, AT&T, and T-Mobile have officially launched ZenKey, a new way quickly log in to apps that leverages the authentication that happens automatically every time your phone connects to the cellular network. Apps must be updated to support ZenKey, and developers have the option of enabling ZenKey as the primary login, or as the second token in two-factor logins, replacing PIN codes sent my text message, for example.