Scripts could have caused mayhem.
MetroPCS patches hole that opened 10 million user creds to plunder
T-Mobile has crushed a bug in subsidiary MetroPCS that could have allowed attackers to steal details on any of its 10 million customers, according to reports.
Cinder researchers Eric Taylor and Blake Welsh say the vulnerabilities were simple to exploit up until a patch was dropped.
Motherboard exploited the vulnerabilities using a Firefox plugin that sent a HTML request with the target’s phone number.
To read the entire article, please click here.
Source: http://www.theregister.co.uk/
