Google Voice Fixes Security Flaw, Almost

Posted by samzenpus on Wednesday March 25, 2009 @01:47PM from the almost-got-it-that-time dept.

gardel writes "Google appears to have fixed a significant security hole in its two-week-old Voice calling service though some vulnerabilities remain. Until about 7pm PDT Tuesday, an unauthorized party could use a SIP device to spoof a phone number attached to a Google Voice account to call the Google Voice number, giviing the spoofer access to greetings and voicemail, and the ability to make outbound calls, including expensive international calls. Though spoofing via SIP is no longer possible, continued existence of some vulnerability was still apparent Tuesday night. Voxilla was able to set the caller ID of a PBX extension to a mobile number attached to Google Voice account and call in, using a business VoIP trunk, to gain access."

5 of 55 comments (clear)

Min score:

Reason:

Sort:

Re:Typo by numbsafari · 2009-03-25 15:04 · Score: 1, Offtopic

Oh no you diint!
Re:Typo by Tubal-Cain · 2009-03-25 16:04 · Score: 0, Offtopic

Shame on you. Neither the square brackets you reprimanded him for getting wrong, nor italicized.

And I refer you to how to properly use [sic]...
FTFY
Re:Typo by Tubal-Cain · 2009-03-25 18:09 · Score: 0, Offtopic

Fixed That For You
Re:Has been true since early days by Techman83 · 2009-03-25 20:06 · Score: 0, Offtopic

I never thought I'd see the day where I have severe UID envy. :P

--
# cat /dev/mem | strings | grep -i cat
Damn, my RAM is full of cats. MEOW!!
Re:Typo by Vu1turEMaN · 2009-03-25 23:44 · Score: 0, Offtopic

wtf is this, engadget?