MSNBC has a disturbing article describing how easy it is to hack into Sprint PCS voice mail systems.
Here’s the problem. I am a Sprint PCS subscriber. When you set up your voice mail, you are invited to “activate a special feature” that allows you to retrieve your Sprint PCS voice mail without having to type your account password. However, this feature is supposed to only work when you are calling your voice mail from your Sprint PCS phone!.
It turns out, according to this MSNBC article, that Sprint PCS uses Caller ID as the authenticator. Now anybody who has their own telephone switch with a digital interface to the phone company can spoof Caller ID. This is an old trick that ex-hacker Kevin Mitnick has discussed for years.
So what could be done?
Well, Caller-ID could be made more secure: There is no reason that my phone company should accept any Caller-ID string.
Second, Sprint PCS is a cell phone company! They should know the difference between a landline calling their voice mail system and one of their own cell phones.
Third, there should be some kind of liability on companies that knowingly market systems that are not secure. Don’t you think?
Why China is still obsessed with disinfecting everything
Most public health bodies dealing with covid have long since moved on from the idea of surface transmission. China’s didn’t—and that helps it control the narrative about the disease’s origins and danger.
These materials were meant to revolutionize the solar industry. Why hasn’t it happened?
Perovskites are promising, but real-world conditions have held them back.
Anti-aging drugs are being tested as a way to treat covid
Drugs that rejuvenate our immune systems and make us biologically younger could help protect us from the disease’s worst effects.
A quick guide to the most important AI law you’ve never heard of
The European Union is planning new legislation aimed at curbing the worst harms associated with artificial intelligence.
Get the latest updates from
MIT Technology Review
Discover special offers, top stories, upcoming events, and more.