ParkMobile Breach Exposes License Plate Data, Mobile Numbers of 21M Users

ParkMobile Breach Exposes License Plate Data, Mobile Numbers of 21M Users

Asked for clarification on what the attackers did access, ParkMobile confirmed it included basic account information – license plate numbers, and if provided, email addresses and/or phone numbers, and vehicle nickname.

No password required: Mobile carrier exposes data for millions of accounts

No password required: Mobile carrier exposes data for millions of accounts

Q Link Wireless, a provider of low-cost mobile phone and data services to 2 million US-based customers, has been making sensitive account data available to anyone who knows a valid phone number on the carrier’s network, an analysis of the company’s account management app shows.

10 SIM Swappers Arrested for Stealing $100M in Crypto from Celebrities

10 SIM Swappers Arrested for Stealing $100M in Crypto from Celebrities

Ten people belonging to a criminal network have been arrested in connection with a series of SIM-swapping attacks that resulted in the theft of more than $100 million by hijacking the mobile phone accounts of high-profile individuals in the U.S. The Europol-coordinated year-long investigation was jointly conducted by law enforcement authorities from the U.K., U.S., Belgium, Malta, and Canada.

T-Mobile rounds out this awful year with another data breach, affecting hundreds of thousands of subscribers

T-Mobile rounds out this awful year with another data breach, affecting hundreds of thousands of subscribers

T-Mobile has confirmed to Android Police it has shut down a data breach operation that may have harvested a small group of customers' phone numbers, number of lines per account, and call diagnostic metrics.

T-Mobile data breach exposed phone numbers, call records

T-Mobile data breach exposed phone numbers, call records

T-Mobile states that the data breach did not expose account holders' names, physical addresses, email addresses, financial data, credit card information, social security numbers, tax IDs, passwords, or PINs. In a statement to BleepingComputer, T-Mobile stated that this breach affected a "small number of customers (less than 0.2%)."

T-Mobile Discloses Data Breach Impacting Prepaid Customers

T-Mobile Discloses Data Breach Impacting Prepaid Customers

T-Mobile said today in a data breach notification that the account information of an undisclosed number of customers using the company's prepaid services was accessed by an unauthorized third-party.

“Digital strip-searches”: police increasingly downloading everything from smartphones – including from crime victims

“Digital strip-searches”: police increasingly downloading everything from smartphones – including from crime victims

For example, it has emerged that victims of crimes in the UK are being asked to hand over their mobile phones and social media accounts so that the police can download all the contents in the search for “relevant” information.

Massive bank app security holes: You might want to go back to that money under the mattress tactic

Massive bank app security holes: You might want to go back to that money under the mattress tactic

Decompiling the app also allows an adversary to understand how the app detects jailbroken mobile devices, which, once vulnerabilities (such as API keys, private keys, and credentials) are found in the source code, results in theft of money through banking trojans, username/password theft or account takeover using overlay screens, and the theft of confidential data."

Govt. May Link Facebook, Twitter With Aadhaar, Mobile Number; But Why?

Govt. May Link Facebook, Twitter With Aadhaar, Mobile Number; But Why?

has understood the problem, and very soon, you can be asked to link your social media accounts with anyone Govt. For instance, a mobile number is required for creating a Twitter account, and moreover, they are offering Aadhaar and other Govt.

Login With Facebook, Google or AT&T? Thanks, but No Thanks

Login With Facebook, Google or AT&T? Thanks, but No Thanks

There's more: Project Verify is better than the Facebook and Google SSOs because it's going to be checked against your mobile SIM card, phone number, user credentials, account tenure and phone account type (info only your wireless carrier has).

Troy Hunt: Beyond Passwords: 2FA, U2F and Google Advanced Protection

Troy Hunt: Beyond Passwords: 2FA, U2F and Google Advanced Protection

For example, if you physically have someone's mobile phone in your hand and it's unlocked, you could login to an account by initiating a password reset, receiving the email in their email client then entering the "2nd factor" token sent via SMS or generated by a soft token app on the device.

T-Mobile was hit by a data breach affecting around 2 million customers

T-Mobile was hit by a data breach affecting around 2 million customers

T-Mobile has announced that on August 20th, the company was hit by hackers who were able to gain access to personal information from roughly 2 million customers, including the name, billing zip code, phone number, email address, account number, and account type of users.