If someone wants to steal your phone number -- say, to intercept the two-factor authentication SMSes needed to break into your bank account or other vital service -- they hijack your SIM by impersonating you to your phone company (or by bribing someone at the company to reassign your phone number to them), and this has made the security of phone numbers into a top concern for security experts and telcoms companies, as there are millions of dollars at stake.
Enter Comcast, all-time champion "most-hated company in America," whose Xfinity Mobile cellular service assigns the same unchangeable PIN to every customer: 0000.
But don't worry, Comcast says that this only puts you at risk if you recycle user-names and passwords, and nobody does that.
Because of that 0000 PIN, getting a victim's Xfinity Mobile account number was the main obstacle for attackers. A Comcast spokesperson told Ars that this account number is available only by logging into the Xfinity Mobile Web portal and is therefore protected by a Comcast's user's password. Comcast told Ars that it does not send out paper bills for Xfinity Mobile and does not include that account number in emails to customers, cutting off two potential ways that attackers could get the account number.
Comcast indicated that the number-porting attack affected only customers who reused passwords across multiple sites.
Comcast set mobile pins to “0000,” helping attackers steal phone numbers [Jon Brodkin/Ars Technica]
(Image: Specious, CC-BY-SA)
Last spring, a Baltimore underwent a grinding, long-term government shutdown after the city's systems were hijacked by ransomware. This was exacerbated by massive administrative incompetence: the city had not allocated funds for improved security, training or cyberinsurance, despite having had its emergency services network taken over by ransomware the previous hear, and five city CIOs […]
“It is unclear at the current time whether this outbreak can be contained within China”
Mac users are getting hit with Shlayer, a malware that installs an “Any Search” bar on their computer, reports Lifehacker.
When it comes to conquering that resolution list and hitting all of your goals in 2020, nothing is more important than getting a great night’s sleep every night so you can wake up feeling refreshed and extra productive. The CarbonIce: 7-in-1 Bacteria Protection & Cooling Pillow will help you do just that, and right now […]
It’s no secret that business leaders and project managers require a certain set of skills in order to outpace the competition and increase the overall efficiency of their company or team. The Lean Six Sigma Expert Training Bundle will take your managerial skills to the next level through training that will help you earn some […]
In the early days of the web, everyone wanted a .com domain for their site. As a result, all the good ones got snapped up. But .com no longer has the cachet it once did. In fact, many new businesses and individuals are opting for other top-level domain extensions. One of the most memorable is […]