General Virgin mobile fails security 101, leaves 6 million accounts vulnerable

view story

http://androidforums.com – I was reading around the net today and found this http://kev.inburke.com/kevin/open-season-on-virgin-mobile-customer-data/ Virgin mobiles 6 digit pin is beyond easy to hack via brute force, taking a day at most. Once an attacker has your PIN, they can take the following actions on your behalf: Read your call and SMS logs, to see who’s been calling you and who you’ve been calling Change the handset associated with an account, and start receiving calls/SMS that are meant for you. They don’t even need to know what phone you’re using now. Possible scenarios: long distance calls to Bulgar (General)