Great Motorola Edge deal on Amazon!

T-Mobile customers' passwords could be vulnerable

By
4comments
T-Mobile
T-Mobile customers' passwords could be vulnerable
In this age where 87 million Facebook users had their profiles used without permission, you might expect that carriers around the world would be super protective of their subscribers' personal information. But a series of tweets from T-Mobile Austria indicate that the wireless operator gives customer service reps the first four characters of customers' passwords and that the whole password is stored in plaintext. If a hacker (let's call him Johnny Badappleseed) has the tech to come up with the rest of the password using bruteforce or just makes a lucky guess, Mr. Badappleseed could make changes to the customer's account without permission. We already know what could happen in a situation like that. And if there is a complete data breach, all of T-Mobile Austria's customers could find their passwords strewn all over the internet.

After receiving several incredulous tweets about the apparent lack of security, another tweet from T-Mobile Austria basically said that its subscribers have nothing to worry about because "We secure all data very carefully, so there is not a thing to fear." It has been our experience that when someone tells you not to worry about something, it is time to start worrying. Same as when someone says "Believe me." Those two words are usually followed by the biggest lies.

T-Mobile Austria made a brief statement that tried to characterize this whole thing as a "misunderstanding" about how the carrier stores customer passwords and what is available to customer service reps. However, a quick call to T-Mobile revealed that customer service reps do have the ability to see the first four characters of your password not only in Austria, but also in the U.S. The rep that we spoke with told us that in the states, T-Mobile now wants your password to contain a minimum of six different numbers. However, the first four numbers will still be visible to T-Mobile customer service reps in the U.S.

Recommended Stories
Just a couple of hours ago, T-Mobile Austria tweeted out a new statement stating that there is no data breach at the carrier and it goes on to say that "databases are encrypted and secured," but that further security measures will be taken "as necessary." Check out the complete series of tweets in the slideshow below.


source: @tmobileat via Motherboard
https://m-cdn.phonearena.com/images/users/39-200/Alan-F.jpg
Alan Friedman Mobile Tech News Journalist
Alan, an ardent smartphone enthusiast and a veteran writer at PhoneArena since 2009, has witnessed and chronicled the transformative years of mobile technology. Owning iconic phones from the original iPhone to the iPhone 15 Pro Max, he has seen smartphones evolve into a global phenomenon. Beyond smartphones, Alan has covered the emergence of tablets, smartwatches, and smart speakers.

Recommended Stories

Loading Comments...

Popular stories

Even longtime T-Mobile customers will have to put up with slow internet speed policy
Even longtime T-Mobile customers will have to put up with slow internet speed policy
Two more companies want FCC action against T-Mobile for interference from 5G
Two more companies want FCC action against T-Mobile for interference from 5G
The 51 million customers affected by the AT&T data breach are getting free protection for 12 months
The 51 million customers affected by the AT&T data breach are getting free protection for 12 months
Make your Galaxy fingerprint scanner unlock faster as Samsung fixes what One UI 6.1 broke
Make your Galaxy fingerprint scanner unlock faster as Samsung fixes what One UI 6.1 broke
iPhone users warned to disable iMessage temporarily to avoid getting hacked
iPhone users warned to disable iMessage temporarily to avoid getting hacked
T-Mobile will soon have another reason to gloat
T-Mobile will soon have another reason to gloat

Latest News

Verizon's Visible introduces annual plans with discounts up to 26%
Verizon's Visible introduces annual plans with discounts up to 26%
Comcast launches NOW, low-cost and prepaid brand for data, TV, and WiFi hotspots
Comcast launches NOW, low-cost and prepaid brand for data, TV, and WiFi hotspots
Apple tipped to reduce display size of iPhone 17 Plus
Apple tipped to reduce display size of iPhone 17 Plus
Google Photos working on an option to hide your downloaded memes and other UI tweaks
Google Photos working on an option to hide your downloaded memes and other UI tweaks
Hurry up and snatch Amazon's jumbo-sized Fire Max 11 tablet at its biggest discount yet
Hurry up and snatch Amazon's jumbo-sized Fire Max 11 tablet at its biggest discount yet
Memes of the week: Crazy Pixel leaks, OnePlus feels the heat in India, and more!
Memes of the week: Crazy Pixel leaks, OnePlus feels the heat in India, and more!
FCC OKs Cingular\'s purchase of AT&T Wireless