Dutch hacker seeks out jailbroken iPhones for fame and fortune
by Donald Melanson 
posted Nov 3rd 2009 @ 8:23PM
[Via TUAW]
hacker posts
[Via TUAW]
Palm's webOS root image leaks out, code enthusiasts reschedule their normal nightly plans
by Ross Miller posted Jun 9th 2009 @ 9:27PM
T-Mobile tweaks data breach statement again, now says nothing was compromised
by Chris Ziegler posted Jun 9th 2009 @ 4:19PM
Once again, T-Mobile has released a statement regarding the alleged hack into its systems last weekend, and it's backtracked a bit from the last one -- now, it's starting to sound like no data was stolen at all. Here's what we've got this time around from a company spokesperson:"Following a recent online posting that someone allegedly accessed T-Mobile servers, the company is conducting a thorough investigation and at this time has found no evidence that customer information, or other company information, has been compromised. Reports to the contrary are inaccurate and should be corrected. T-Mobile continues to monitor this situation and as a precaution has taken additional measures to further ensure our customers' information and our systems are protected. As is our standard practice, customers can be assured if there is any evidence that customer or system information has been compromised, we would inform those affected as quickly as possible."
We're taking this as a good sign for customers at this point, but it's hard to say how many more statements we'll get before the matter's fully closed, so stay tuned.
T-Mobile thinks data leak "not enough to cause harm" to customers
by Chris Ziegler posted Jun 9th 2009 @ 8:49AM
After news broke of a possible breach into T-Mobile's systems over the weekend, subscribers were understandably concerned over claims that personal information (among other things) may have been pilfered by the offenders who later offered the data for sale to the carrier's competitors. An investigation has been launched, and so far, it sounds like T-Mobile is admitting some data was taken -- but that it wasn't enough to be of any concern to its customers. Work is ongoing to determine exactly what the hackers got their hands on and how, but it's a promising sign that subscribers don't need to step up fraud monitoring on their accounts. The full statement is below:"To reaffirm, the protection of our customers' information and the security of our systems is paramount at T-Mobile. Regarding the recent claim on a Web site, we've identified the document from which information was copied, and believe possession of this alone is not enough to cause harm to our customers. We continue to investigate the matter, and have taken additional precautionary measures to further ensure our customers' information and our systems are protected. At this moment, we are unable to disclose additional information in order to protect the integrity of the investigation, but customers can be assured if there is any evidence that customer information has been compromised, we would inform those affected as quickly as possible."
T-Mobile USA's servers breached, subscriber data stolen?
by Chris Ziegler posted Jun 7th 2009 @ 6:07PM
T-Mobile has yet to issue an official statement on the matter, but word on the street is that hackers have found their way into T-Mobile USA's inner workings and made off with a treasure trove of information, including subscriber data, which would make sense considering that parts of T-Mobile's website have been down for most of the day today. The exact nature of the breach is unclear, but the alleged hackers say they "have everything, their databases, confidential [sic] documents, scripts and programs from their servers, financial documents up to 2009." They go on to say that they've been in touch with the carrier's competitors trying to sell the data, but have (thankfully) been turned away, so now they're looking to hawk it to the highest bidder. If this is legit, we can't imagine that trying to sell the data in a public forum is the wisest plan -- but then again, we're not criminal masterminds, so maybe this is standard operating procedure. Here's hoping they're brought down quickly and T-Mob gets to the bottom of the breach.[Via Slashdot]
Update: We've gotten an official comment from T-Mobile, and in brief, they're actively looking into the claim but can't confirm or deny whether it's actually happened. "The protection of our customers' information, and the safety and security of our systems, is absolutely paramount at T-Mobile. Regarding the recent claim, we are fully investigating the matter. As is our standard practice, if there is any evidence that customer information has been compromised, we would inform those affected as soon as possible."
Experts predict malware field day for iPhone in '08
by Chris Ziegler posted Dec 17th 2007 @ 6:40PM
Like Y2K and the end of rock and roll, pundits love to call out platforms that are ripe for a nightmarish, post-apocalyptic hell-on-earth sort of attack by the world's technologically inclined miscreants. In that vein, mobile phones have been billed for years as the next great frontier in virii, largely because they're getting smarter, more open, and more ubiquitous than ever before. We can buy that logic, but the waves upon waves of malicious code infecting the world's smartphones simply haven't happened. So at what point do we say that these analysts are crying wolf?Now might not be a bad time to start, as Arbor Networks' security group is calling the iPhone a likely target in 2008 by hackers who want to "be the first to hack a new platform." We wouldn't dare say that there won't be attacks on the iPhone's security holes next year and beyond, but we don't think users need to be scrambling to disable their data connections, either; Windows Mobile, Symbian, Palm OS, and everyone else have gotten along fine for years aside from the occasional malware blip on the radar that barely makes a splash and goes unnoticed by 99 percent of the world's users. Not to mention the fact that the opportunity to "be the first" to hack the iPhone has come and gone -- so to the hackers of the world who're thinking about diving into the wide world of iPhone hacking, may we suggest you put your brainpower to the forces of good, not evil?
Hackers enable GPS on HTC Trinity
by Michael Caputo posted Jan 30th 2007 @ 12:46PM
It seems like nowadays, a hacker's work is never done and with a little time and know-how, anything is possible. Does everyone remember when the HTC Trinity first appeared on our radar? It had all the makings of a great one less being shipped with the GPS receiver in a dormant state. Lucky for us all it took was a few well-skilled hackers and some determination to come up with how to enable it. Looking at the instructions, seems like a pretty simple procedure. If anyone is brave enough to try it, drop us a line and let us know the outcome. [Thanks, Chymmylt]
T-Mobile hacker gets slap on the wrist
by Chris Ziegler posted Aug 31st 2006 @ 6:36PM
What better deterrent to breaking into T-Mobile's customer database, than a year of being forced to sit at home with nothing to do but screw around on the 'puter? We can't imagine, and apparently neither could U.S. District Judge George King, sentencing 23 year old Nicholas Lee Jacobsen to a whopping 365 days of home detention for the 2004 crime in which several hundred names and Social Security numbers were swiped (not to mention the Sidekick contents of a Secret Service agent, of all people). To be fair, the hoodlum was also ordered to pay T-Mobile ten grand -- and we have to believe the feds are doing what they can to keep Mr. Jacobsen away from technology for the time being -- but we wouldn't have minded seeing some hard time involved.MMS spam: a battery-killing attack?
by Chris Ziegler posted Aug 31st 2006 @ 5:49AM
Modern smartphones struggle to eke out a day or two of moderate use as it is without malicious folk tapping into your battery; sadly, researchers at UC Davis have apparently managed to do exactly that, exploiting fundamental flaws in the way most phones handle the MMS protocol to drain juice. It seems the trouble stems from "junk data" sent via MMS, which causes the phone to wake from standby, realize the data doesn't constitute a valid message, and discard it, all without any notification to the user. Rapidly repeat the process, and, well, you can see where this leads. All the attacker needs is the target phone's number, and before you know it, your battery's history (the researchers were able to do the deed at about 20 times the normal drain rate, to be exact). Their work wasn't all gloom and doom, though -- another MMS exploit allowed the wily grad students to fire off messages free of charge. Of course, with a dead battery, you won't be firing off much of anything.[Via textually.org]
