It ’s very strange to take heed to an MP3 transcription of your own vocalisation mail . When John Hering of security measures firmFlexilistold me that they had reversed engineered the feat that compromise Paris Hilton and Vin Diesel ’s T - Mobile representative ring armor originally this week , I wanted to see it for myself . I take John to drink down unfastened my voice mail and place me a recording .
I called myself with a neighbour ’s land stock , left myself a voice content , and then give John my headphone number . Twenty minutes later I not only had a recording of that voice ring armour in my email inbox , but had received two call — from myself . We had been able to access my voice mail , certain , but had also used the scheme to make an outgoing call . In effect , my voicemail called me . In reality , John stood at a payphone in a cheap Mexican eating house in downtown Los Angeles . He could have been anywhere .
We ’re making this bed for two reasons : T - Mobile has been slow in responding to Flexilis ’s multiple notice about the exploit ( T - Mobile is surely busy with this week’sHilton Hackfallout , but Flexilis has been try out to get through them since before that blew up Sunday and has yet get only minimum , albeit seemingly concerned reply ) . Also , we require you to know how to protect yourself from a proficiency that ’s already out in the wild . It ’s not responsible to say exactly how it ’s being done — I expect specifically not to be given hardheaded details , so do n’t ask . Although mellow - level knowledge of reckoner , security , and telephone is required , the exploit is relatively piffling , I ’m distinguish .
https://gizmodo.com/paris-hiltons-sidekick-ii-hacked-what-about-yours-33637
If you ’re a T - Mobile customer , John ’s save up a few short steps you may take to protect yourself from this specific technique . A few minutes of clock time can save you from an outbound representative postal service message that says “ I ’m a substantial douche . ”
Dial your T - Mobile voice mail from your mobile telephone set . If you do n’t know your PIN turn , you could set a raw one by doing the chase : Access your ‘ personal choice ’ by push 4 . ‘ Modify your personal preferences ’ by press 4 , again . Then ‘ modify your password ’ by press 1 . Set a Modern PIN and compose it down somewhere secure , if necessary .
After you reset your pin , weight-lift the * key to go back to the ‘ personal options ’ menu ( or press 4 from the main menu if you already knew your PIN ) . Once you have accessed the ‘ personal option ’ menu you will then agitate 8 which will enable password authentication when calling from your own nomadic telephone set . Although entering your countersign every single time you call your voice mail can be a turn of a pain , a few second of your time is a small terms to pay for the security of your voice mail system .
We think T - Mobile will fix the problem finally , but there ’s no reason for you or any celebrity to be at risk of infection while they work out it out .
An aside : Yes , I ’m still on T - Mobile , even after Icalled them crap devilsand swore I was impart . We should belike utter about it more sometime , but here ’s the little account : I ’ve get dirt credit and I have n’t been able to ( or did n’t want to ) afford the $ 650 + bank deposit to move our two lines to another bearer . I know I ’m an asshole for stay with them , but I do n’t experience what else to do at the mo . For what it ’s worth , I did n’t buy the Sidekick II , even though I really wanted one .
https://gizmodo.com/t-mobile-sidekick-ii-review-best-phone-ill-never-buy-19948
Daily Newsletter
Get the good tech , science , and refinement news in your inbox day by day .
News from the time to come , delivered to your present .
