Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




229 posts

Master Geek
+1 received by user: 37


Topic # 150025 8-Jul-2014 20:59
Send private message

http://www.stuff.co.nz/business/industries/10246091/Vodafone-privacy-breach-serious




 

 

 


Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2 | 3 | 4 | 5
BDFL - Memuneh
60308 posts

Uber Geek
+1 received by user: 11352

Administrator
Trusted
Geekzone
Lifetime subscriber

  Reply # 1084414 8-Jul-2014 21:00
One person supports this post
Send private message
5738 posts

Uber Geek
+1 received by user: 1694

Trusted

  Reply # 1084417 8-Jul-2014 21:04
Send private message

Interesting.

I am assuming this is mobile side. All fixed line passwords are randomly generated.




Steam: Coil (Same photos as profile here)
Origin: Scranax
Currently playing on PC: Rust, Subnautica, CS:GO, AOE2 HD, BeamNG Drive, BF1.


 
 
 
 


Try Wrike: fast, easy, and efficient project collaboration software
BDFL - Memuneh
60308 posts

Uber Geek
+1 received by user: 11352

Administrator
Trusted
Geekzone
Lifetime subscriber

  Reply # 1084419 8-Jul-2014 21:05
2 people support this post
Send private message

The article is badly written. Not expecting to have a full description of the exploit but the information provided is lacking really - it doesn't make much sense. 





778 posts

Ultimate Geek
+1 received by user: 173


  Reply # 1084423 8-Jul-2014 21:20
3 people support this post
Send private message

I read it as if he got access to one other customers account, can't quite get the link that everyone's accounts are accessible...

442 posts

Ultimate Geek
+1 received by user: 135


  Reply # 1084426 8-Jul-2014 21:23
Send private message

people with a master password are able to access private customer information, including credit card details.


But, uh, that's what a "master password" is made for...(?).

-A

2102 posts

Uber Geek
+1 received by user: 525


  Reply # 1084447 8-Jul-2014 21:57
Send private message

CustomerZone or the other system I wonder?

1154 posts

Uber Geek
+1 received by user: 833

Subscriber

  Reply # 1084457 8-Jul-2014 22:16
Send private message

If the allegations in the article are true, the complainant really should get the Privacy Commissioner's office involved. The public needs some assurance that this matter is being properly attended to and given VF's attitude towards customer service, I am not optimistic. However, at this stage we don't even know if this supposed breach is any such thing.



665 posts

Ultimate Geek
+1 received by user: 142


  Reply # 1084458 8-Jul-2014 22:17
Send private message

Well it's on Stuff etc so we will see a press release tomorrow that's a bit more clear no doubt

597 posts

Ultimate Geek
+1 received by user: 132


  Reply # 1084523 9-Jul-2014 05:49
Send private message

The article smells of BS.

Master password? Who even has or has had those? Master accounts, sure, but master passwords? Don't think so.

Also, why and how does he have the master password?

A more plausible story would be that he was at an icafe and happened to be at a computer where the previous user was a Vodafone customer that hadn't logged out.




Regards
Stefan Andres Charsley

What does this tag do
942 posts

Ultimate Geek
+1 received by user: 192

Subscriber

  Reply # 1084530 9-Jul-2014 07:28
Send private message

Sounds like (from the article) that someone was setup with a default password, which they discovered would also let them into other users accounts who hadn't bothered to change their password

412 posts

Ultimate Geek
+1 received by user: 100


  Reply # 1084534 9-Jul-2014 07:57
One person supports this post
Send private message

Article now removed......


smells like carp to me




 The views expressed by me are not necessarily those of my employer


5738 posts

Uber Geek
+1 received by user: 1694

Trusted

  Reply # 1084536 9-Jul-2014 08:01
Send private message

jnimmo: Sounds like (from the article) that someone was setup with a default password, which they discovered would also let them into other users accounts who hadn't bothered to change their password


Its been deleted now.
Most likely people are setting their passwords to something guessable and he just came across one.




Steam: Coil (Same photos as profile here)
Origin: Scranax
Currently playing on PC: Rust, Subnautica, CS:GO, AOE2 HD, BeamNG Drive, BF1.


526 posts

Ultimate Geek
+1 received by user: 99


  Reply # 1084540 9-Jul-2014 08:11
Send private message


Its been deleted now.


Still in the business section, just isn't on the front page

Clint

526 posts

Ultimate Geek
+1 received by user: 99


  Reply # 1084541 9-Jul-2014 08:15
One person supports this post
Send private message

TimA: Interesting.

I am assuming this is mobile side. All fixed line passwords are randomly generated.


Interestingly he says he can see the credit card details - when i log in to "My Vodafone" for my mobile account, i can only see the first few numbers, no expiry date and certainly not the CSC.

If he did have access to accounts i don't think he has as much info as he thinks he does

CLint



378 posts

Ultimate Geek
+1 received by user: 128


  Reply # 1084546 9-Jul-2014 08:47
One person supports this post
Send private message

clinty:
TimA: Interesting.

I am assuming this is mobile side. All fixed line passwords are randomly generated.


Interestingly he says he can see the credit card details - when i log in to "My Vodafone" for my mobile account, i can only see the first few numbers, no expiry date and certainly not the CSC.

If he did have access to accounts i don't think he has as much info as he thinks he does

CLint




Yeah the credit card info bit sounds wrong to me. Even with access to VF CRM tools you can't actually see a full credit card number. At least not with the tools I use. I've always assumed that's pretty much standard practice for any company these days.




Please note: I have a professional bias towards Vodafone.

 1 | 2 | 3 | 4 | 5
Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

IBM leads Call for Code to use cloud, data, AI, blockchain for natural disaster relief
Posted 25-May-2018 14:12


New FUJIFILM X-T100 aims to do better job than smartphones
Posted 24-May-2018 20:17


Stuff takes 100% ownership of Stuff Fibre
Posted 24-May-2018 19:41


Exhibition to showcase digital artwork from across the globe
Posted 23-May-2018 16:44


Auckland tops list of most vulnerable cities in a zombie apocalypse
Posted 23-May-2018 12:52


ASB first bank in New Zealand to step out with Garmin Pay
Posted 23-May-2018 00:10


Umbrellar becomes Microsoft Cloud Solution Provider
Posted 22-May-2018 15:43


Three New Zealand projects shortlisted in IDC Asia Pacific Smart Cities Awards
Posted 22-May-2018 15:14


UpStarters - the New Zealand tech and innovation story
Posted 21-May-2018 09:55


Lightbox updates platform with new streaming options
Posted 17-May-2018 13:09


Norton Core router launches with high-performance, IoT security in New Zealand
Posted 16-May-2018 02:00


D-Link ANZ launches new 4G LTE Dual SIM M2M VPN Router
Posted 15-May-2018 19:30


New Panasonic LUMIX FT7 ideal for outdoor: waterproof, dustproof
Posted 15-May-2018 19:17


Ryanair Goes All-In on AWS
Posted 15-May-2018 19:14


Te Papa and EQC Minecraft Mod shakes up earthquake education
Posted 15-May-2018 19:12



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.