Slashdot Mirror

← Back to Stories (view on slashdot.org)

Google Voice Fixes Security Flaw, Almost

Posted by samzenpus on from the almost-got-it-that-time dept.

gardel writes "Google appears to have fixed a significant security hole in its two-week-old Voice calling service though some vulnerabilities remain. Until about 7pm PDT Tuesday, an unauthorized party could use a SIP device to spoof a phone number attached to a Google Voice account to call the Google Voice number, giviing the spoofer access to greetings and voicemail, and the ability to make outbound calls, including expensive international calls. Though spoofing via SIP is no longer possible, continued existence of some vulnerability was still apparent Tuesday night. Voxilla was able to set the caller ID of a PBX extension to a mobile number attached to Google Voice account and call in, using a business VoIP trunk, to gain access."

7 of 55 comments (clear)

  1. Phreakers by Anonymous Coward · · Score: 5, Funny

    Hackers, meet the Phreakers, Phreakers, meet the Hackers. Have fun!!

    1. Re:Phreakers by sortius_nod · · Score: 2, Funny

      Oh, we've met, we don't get along, but we've met.

  2. Re:Typo by Anonymous Coward · · Score: 2, Funny

    giviing (sic) the spoofer access to greetings and voicemail

    I refer you to my signature:

    And I refer you to how to properly use sic, which is to say: It should be enclosed in square brackets, not in parenthesis.

    Gosh, now I can feel smugly superior, too!

  3. Re:Typo by Aranykai · · Score: 1, Funny

    Not a typo, this article was merely written by the brilliant minds that brought us the Nintendo Wii

    --
    If sharing a song makes you a pirate, what do I have to share to be a ninja?
  4. Re:"including expensive international calls" by David+Gould · · Score: 4, Funny

    Where expensive is an arbitrary number between the inability to use an internet chat program and proprietary price gouging?

    That, or "expensive international calls" is a euphemism for "phone sex".

    --
    David Gould
    main(i){putchar(340056100>>(i-1)*5&31|!!(i<6)<< 6)&&main(++i);}
  5. 2600 plz by Anonymous Coward · · Score: 4, Funny

    I took down google voice with my captain crunch whistle.

  6. Re:Blue box? by Anonymous Coward · · Score: 2, Funny

    You're an idiot trying to fish for mod points by mentioning something vaguely relevant despite the fact you have no idea what it is, if you knew what it was and what this is you would know that it wouldn't work at all since it's completely different. Using a blue box here is equivalent to using a brick to access a locked user account on Windows XP simply because a brick can break a glass window.