Slashdot Mirror

← Back to Stories (view on slashdot.org)

6 Million Virgin Mobile Users Vulnerable To Brute-Force Attacks

Posted by timothy on Thursday September 20, 2012 @07:09AM from the see-also-bank-of-france dept.

An anonymous reader writes "'If you are one of the six million Virgin subscribers, you are at the whim of anyone who doesn't like you.' The Hacker News describes how the username and password system used by Virgin Mobile to let users access their account information is inherently weak and open to abuse." Computerworld also describes the problem: essentially, hard-coded, brute-force guessable passwords, coupled with an inadequate mechanism for reacting to failed attempts to log on.

1 of 80 comments (clear)

Min score:

Reason:

Sort:

Re:Doesn't surprise me. by Anonymous Coward · 2012-09-20 07:24 · Score: 2, Insightful

It's even worse when financial institutions don't allow passwords that are more than x characters or can't have special characters.