A day in the life of a Pyro.

I read an interesting story from SecurityFocus.

Apparently a hacker broke in to T-Mobile’s system and had access to information such as a user’s name, SSN, DOB, username/password, voicemail password, and more. It appears the hacker has had access to the systems for at least a year.

The hacker was able to obtain communications from a secret service operative who had been using a “sidekick” in the field. Also obtained were candid photos from many celebrities mobile devices. Celebrities included Demi Moore, Ashton Kutcher, Nicole Richie, and Paris Hilton.

The hacker was able to infiltrate the system because “There was flaw in the way the cell phone servers were set up” according to one of his friends.

The secret service and T-mobile are trying to keep this “hush-hush” right now. Despite California’s anti-identity theft law “SB1386,” the company is obliged to notify any California customers of a security breach in which their personally identifiable information is “reasonably believed to have been” compromised. That notification must be made in “the most expedient time possible and without unreasonable delay,” but may be postponed if a law enforcement agency determines that the disclosure would compromise an investigation.

I guess the good news is that:

1. I don’t use T-mobile
2. They weren’t able to get any credit card information
3. They were caught

Just goes to show that your information is never really “safe.” Someone is always going to find another way to hack a system. Especially if it is a Winblowz system.

This entry was posted on Thursday, January 13th, 2005 at Jan 13, 05 | 3:03 pm and is filed under Tech. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.