Paris Hilton accused of voice-mail hacking

Note:  This is too much. I almost fell out of my seat after reading this. I am amazed in the fact that Cingular Wireless LLC and T-Mobile would use simple CallerID to authenticate customers when accessing voicemail. Another amusing fact was the SpoofCard.com admits to using Asterisk as there base for delivering this service. Also the fact that some hacker most likely employed by the some party involved is using such cutting edge technology to sling dirt at the celebrity victim (Boo Hoo).  Please post your comments.  I would like to hear your thoughts about this.....if you care.
 
 
 

[Picture Removed Due to Bandwidth Usage......too popular - sorry] 
 
[Update:  Back by popular demand until we figure out what to do]
 
 
 
"The feud between celebrities Paris Hilton and Lindsay Lohan has taken a turn for the geeky, with a small fake Caller ID seller accusing Hilton of hacking into voicemail accounts on an un-named mobile phone network."

 

"

Hilton was one of more than 50 customers whose accounts were suspended because they had been using SpoofCard.com's Caller ID spoofing service to hack into voicemail accounts, according to Mark Del Bianco, SpoofCard.com's attorney. Many of the accounts that were hacked via the spoofing service belonged to well-known celebrities, including Lohan, he said.

SpoofCard.com has not actually accused Hilton of hacking into Lohan's voicemail. But celebrity gossip sheets, already abuzz with the rivalry between the two divas, have jumped on the story.

The New York Post reported last month that someone had stolen the password to Lohan's BlackBerry and sent her friends "disgusting and very mean messages that everyone thought were coming from Lindsay." Lohan's representatives hinted that Hilton may have been behind the hack, the Post said.

Hilton could not be reached for comment, but her spokesman Elliot Mintz told E! Online that the alleged hacking "just didn't happen," and suggested that someone else may have opened the SpoofCard.com account in Hilton's name.

Both the Cingular Wireless LLC and T-Mobile USA Inc. telephone networks use Caller ID to identify voicemail users without requiring passwords. So users on either network could have been vulnerable to the misuse alleged by SpoofCard.com, said Lance James chief scientist with security vendor Secure Science Corp.

The scandal illustrates how the telephone industry has been affected by inexpensive telephony software, like the open-source Asterisk telephone system. Recently phishers have been using this software to set up inexpensive phone networks that give their fake e-mails an added air of authenticity, for example.

And with less than 10 employees, SpoofCard.com was able to use Asterisk and Linux to create a line of business that would have been far too expensive just ten years ago. The fake Caller ID vendor sells US$10, 60-minute calling cards that let users call a toll-free number and type in whatever Caller ID number they want their call to display."

Click Here for the Full Article 

 

blinklist : BoingBoing : del.icio.us : digg : furl :
shadows : simpy : Slashdot : spurl : yahoo
Posted by Dal on August 30, 2006 01:32 PM |
Posted to VoIP Security

« AT&T gets into municipal WiFi business | Main | Biggest Commercial Bank in China Goes VoIP »