Home  ›  News  ›

AT&T, T-Mobile Customer PINs Left Exposed by Security Flaws

Article Comments  

Aug 25, 2018, 9:26 AM   by Eric M. Zeman

Two different security flaws affecting the customers of AT&T and T-Mobile were revealed this week. The security gaps could have given hackers access to customer account PINs, which would in turn allow them to potentially hijack the customers' SIM cards. AT&T customers were left vulnerable by the insurance provider Asurion. When initiating claims through Asurion's web site, hackers could have gleaned PINs through a form that failed to have a limit on attempts to enter the PIN correctly. This opened the door for brute-force attacks. T-Mobile customers were left vulnerable by the Apple Store app on iPhones. The issue left an opening on a web page that bridged the Apple Store with T-Mobile's account verification system. Similar to the Asurion issue, the Apple Store didn't place a limit on the number of attempts for PIN entry. This also permitted a brute-force attack to guess the number. Both Asurion and Apple resolved the lapses after they were brought to their attention. The T-Mobile vulnerability left some 77 million customers exposed. The number of customers impacted at AT&T is not known. SIM hijacking allows hackers to essentially copy the identity of a legit phone that can then be used to verify identify in apps and services that used SMS-based two-factor authentication.

BuzzFeed News »

Related
Asus Goes Big with Zenfone 11 Ultra

Mar 14, 2024
Asus has revealed its latest global flagship phone: the Zenfone 11 Ultra. This year's model abandons the compact form factor that was a hallmark of the Zenfone series in recent years; the 11 Ultra has a 6.78" FHD+ AMOLED display, whereas last year's model was just 5.9".

iPhone 14 Plus Offers a Big Screen For Less

Sep 7, 2022
Apple has revealed the iPhone 14 series, with new features, improved specs, and new size options. In place of a Mini option, the iPhone 14 will come in the same 6.1-inch and 6.7-inch screen size options as the Pro models.

Motorola Gives its Stylus Phone a Spec Bump

Yesterday
Motorola has revealed the 2024 edition of its moto g stylus 5G , a model that typically sits near the upper end of its moto g series of affordable phones. The new model addresses most shortcomings of last year's model, adding wireless charging and boosting the wide-angle camera resolution from 8 megapixel to a more-useful 13 megapixel.

Samsung Expands Mid-Range Lineup with Galaxy A35 5G

Apr 18, 2024
Samsung is bringing more mid-range phones to the US this year with the introduction of the Galaxy A35 5G. Samsung brought the Galaxy A32 5G to the US in late 2021, but the A33 and A34 skipped the US.

Motorola Brings More Affordable 5G Phones to its 2024 Lineup

Mar 12, 2024
Motorola has announced the 2024 editions of the moto g 5G and moto g power 5G, priced at $200 and $300, respectively (MSRP, unlocked). Both phones offer 5G, a vegan leather finish on the back, 120 Hz display refresh, 50 megapixel main camera, 5,000 mAh battery, 128 GB storage (expandable), NFC, fingerprint reader (on the side), and a headset jack.

more news about:

AT&T
T-Mobile
Apple
iOS
 

Comments

This forum is closed.

This forum is closed.

No messages

 
 
Page  1  of 1

Subscribe to news & reviews with RSS Follow @phonescoop on Threads Follow @phonescoop on Mastodon Phone Scoop on Facebook Follow on Instagram

 

Playwire
Advertise on this site.

All content Copyright 2001-2024 Phone Factor, LLC. All Rights Reserved.
Content on this site may not be copied or republished without formal permission.