T-Mobile website bug apparently exploited to mine sensitive account data

A bug disclosed and patched last week by T-Mobile in a Web application interface allowed anyone to query account information by simply providing a phone number. That includes customer e-mail addresses, device identification data, and even the answers to account security questions.

Read More

Image courtesy of: Sean Gallagher