Security researcher discovers simple way to access Verizon ISP accounts

verizon vulnerability left millions of users at risk
A new report has been released which claims that armed with nothing more than a spoofed IP address and a phone number, anyone could access private customer information contained within the Verizon database.

The vulnerability was somehow discovered by BuzzFeed, of all places, which worked closely with Verizon to get the gap closed once they had a chance to evaluate the details of the breach.

The site received a tip-off from the CIO of the security firm Cinder, Eric Taylor, who had been testing the technique for a number of weeks before cluing BuzzFeed into the operation. The trick combines a minor amount of technical skill with classic social engineering tactics by spoofing an IP address of a Verizon customer, and then contacting the Verizon help center through the Internet provider’s website.

As long as the hacker has the phone number and address of their intended victim (something that’s easy to glean from emails or social engineering tactics), the Verizon chat center would automatically open the account as long as it detected that the IP address being used to connect matched up.

Verizon says it has a system in place designed to prevent this sort of problem from putting customers at risk, in the form of a PIN code that must be entered whenever a customer support representative is handing over sensitive information. The problem is this lock can be easily subverted as long as the hacker has access to an answer for one of the three security questions that are tied to a particular account.

According to Verizon, the error occurred due to a problem with the code of its website that was implemented on April 22nd, and has since been patched up after the company was contacted both by BuzzFeed and Taylor personally.

Gaming

‘Fortnite’ security flaw let hackers spy on players through microphones

A security vulnerability found in Fortnite allowed hackers to gain access to other players' accounts, potentially letting them spy on conversations using the in-game microphone. It has been addressed.
Computing

Lost your router? Here's how to find its IP address to help track it down

Changing the login information for your router isn't always easy, that's why so many have that little card on the back. But in order to use it, you need to know where to go. Here's how to find the IP address of your router.
Computing

Reluctant to give your email address away? Here's how to make a disposable one

Want to sign up for a service without the risk of flooding your inbox with copious amounts of spam and unwanted email? You might want to consider using disposable email addresses via one of these handy services.
Gaming

Epic Games graded ‘F’ on customer service by Better Business Bureau

Epic Games, the studio behind Fortnite, received an "F" rating from the Better Business Bureau over complaints against its customer service and issues with exchanges and refunds. Epic Games said that it has addressed the issues.
Computing

Stop your PC's vow of silence with these tips on how to fix audio problems

Sound problems got you down? Don't worry, with a few tweaks and tricks we'll get your sound card functioning as it should, and you listening to your favorite tunes and in-game audio in no time.
Computing

Yes, Android apps can run on your PC, and it's easier than you think

Wish you knew how to run Android apps in Windows? It's easier than you might think and there are a number of different ways to do it. In this guide, we break down the steps so you can follow along with ease.
Computing

Chip off the auction block – Intel’s i9-9990XE may be sold to the highest bidder

Intel's alleged Core i9-9990XE may only be sold at auction to OEMs, meaning that only a few of the 14-core, 28-thread, 5GHz CPUs will ever see the light of day in specific devices and systems.
Computing

Don't spend hundreds on Pro Tools or Logic. Try one of these free alternatives

Believe it or not, Pro Tools isn't the only digital audio workstation worth your time. Check out our picks for the best free recording software, whether you're looking for a lightweight app or a full-blown audio workstation.
Computing

How to share an external hard drive between Mac and Windows

Compatibility issues between Microsoft Windows and Apple MacOS may have diminished sharply over the years, but that doesn't mean they've completely disappeared. Here's how to make an external drive work between both operating systems.
Computing

Should you buy the affordable MacBook Air, or is the MacBook Pro worth the price?

Though they both share Retina Displays and similar keyboards, there are still some specs differences and other changes that differentiate the new 2018 MacBook Air and MacBook Pro. In this guide, we stack the two up against each other.
Android

Mobile World Congress (MWC) 2019: Complete Coverage

There's no bigger show for mobile tech geeks than Mobile World Congress in Barcelona, Spain: where flagship phones are born and intriguing new wearables shine. And this year, where foldable phones and 5G are likely to dominate the news. For…
Computing

Google is giving its G Suite web apps new touches of visual improvements

Your G Suite applications will soon have a different look. Several of the web apps are getting updated with subtle visual improvements inspired by Google's Material Design guidelines. 
Emerging Tech

CES 2019 recap: All the trends, products, and gadgets you missed

CES 2019 didn’t just give us a taste of the future, it offered a five-course meal. From 8K and Micro LED televisions to smart toilets, the show delivered with all the amazing gadgetry you could ask for. Here’s a look at all the big…
Computing

Hackers are scoring with ransomware that attacks its previous victims

Computer viruses are always evolving. In a new one, dubbed "Ryuk," hackers are targeting PCs with ransomware that scours an infected network in order to pinpoint and attack and enterprises with big money.