The latest from Telecom-Funda
- Can Comcast Stop Losing Video Subscribers?
- Cisco introduces stadium Wi-Fi solution
- DragonWave continues to suffer from Cleawire's WiMAX build-out slowdown
- Verizon: Turn Tiers to Smiles
- Facebook Likes Skype
- iPass offers Wi-Fi roaming, authentication software to mobile operators
- Euronews: AlcaLu Nears $1.3B Unit Sale
- LTE Backhaul Startup Rises From Nortel Ashes
- UK phone-hacking scandal - does this go beyond an issue about journalism?
- New Product Recap: June 2011
| Can Comcast Stop Losing Video Subscribers? | Top |
| Cisco introduces stadium Wi-Fi solution | Top |
| DragonWave continues to suffer from Cleawire's WiMAX build-out slowdown | Top |
| Verizon: Turn Tiers to Smiles | Top |
| Facebook Likes Skype | Top |
| iPass offers Wi-Fi roaming, authentication software to mobile operators | Top |
| Euronews: AlcaLu Nears $1.3B Unit Sale | Top |
| LTE Backhaul Startup Rises From Nortel Ashes | Top |
| UK phone-hacking scandal - does this go beyond an issue about journalism? | Top |
| Like everyone in the UK, I've been listening in horror to the recent reports that the News of the World's journalists have listened to the private voicemails not just of celebrities and politicians, but those of victims of crime and terrorism. I certainly think that those responsible must face the force of both the law and public opprobrium. But it's also made me think about the process they used. While dastardly, it doesn't sound that difficult - basically either guessing users' default voicemail PIN codes (0000 etc) or - allegedly - bribing somebody to divulge them. This leads me to three conclusions: I can't believe that the NoTW journalists were the only ones who invented and used this technique. Firstly, other journalists are probably equally implicated, as there's a lot of job mobility in that industry. But secondly, this technique has most probably also been used in other countries, and in other contexts. I've got to believe that this goes beyond news, and probably extends to industrial espionage, financial insider-dealing and assorted other forms of snooping and spying. The mobile operators (and by implication their vendors/integrators) appear to have been seriously remiss about defining good practice and standards for voicemail security. This does not just extend to allowing default passwords to remain in use indefinitely, it also involves the accessibility of PINs to customer service or other staff. It seems that these PINs are much more weakly locked-down that banks' ATM codes. I also find it hard to believe that UK operators are uniquely lax about this - presumably it's an equal issue around the world. Lastly, this is another example of the "cloud" failing in its security. Just because this involved some "social engineering" does not make voicemail hacking any less scary than Sony's loss of customer details or other recent failures. Maybe there should be questions about whether the network is the right default place to store voicemails, rather than downloading them to handsets when connectivity is available. To my mind, the UK Information Commissioner needs to do a full review into how voicemail privacy and security is run in the telecoms industry. And other countries' authorities ought to be following suit. I think the unique intensity of the UK journalism / political sphere has broken the dam on this issue, but I'll be very surprised if one newspaper is the sole culprit when the rest of the story floods out. EDIT: this blog pos t (found easily on Google) discussed voicemail snooping and vulnerabilities, specifically as related to US mobile operators. Apparently many voicemail services just use Caller ID to identify when the inbound call is coming from a handset - so easily spoofed. Doesn't even use SIM-based authentication when calling from the phone itself. | |
| New Product Recap: June 2011 | Top |
CREATE MORE ALERTS:
Auctions - Find out when new auctions are posted
Horoscopes - Receive your daily horoscope
Music - Get the newest Album Releases, Playlists and more
News - Only the news you want, delivered!
Stocks - Stay connected to the market with price quotes and more
Weather - Get today's weather conditions
| You received this email because you subscribed to Yahoo! Alerts. Use this link to unsubscribe from this alert. To change your communications preferences for other Yahoo! business lines, please visit your Marketing Preferences. To learn more about Yahoo!'s use of personal information, including the use of web beacons in HTML-based email, please read our Privacy Policy. Yahoo! is located at 701 First Avenue, Sunnyvale, CA 94089. |
No comments:
Post a Comment