Log in

No account? Create an account
Ramblings Journals I Read Calendar The Dirt MegaZone's Waste of Time Older Older Newer Newer
MegaZone's Safety Valve
The Ramblings of a Damaged Mind
Do you use T-Mobile?
You've been hacked.

Seriously - especially read if you have a Sidekick.

I am: amused amused
Current Media: office buzz

mephron From: mephron Date: January 12th, 2005 08:43 pm (UTC) (Direct Link)
(I need a Zim picture.)


So far today I've heard about this from Slashdot, MeFi, solipsistnation, and seven emails from friends, one of them gloating in a manner that insures the next time I see him I will probably break his nose.
thekimmer From: thekimmer Date: January 12th, 2005 08:57 pm (UTC) (Direct Link)
From: kensuke_aida Date: January 12th, 2005 09:12 pm (UTC) (Direct Link)
T-Mobile = Cingular resold = stupid.

Especially if you live in an area that still uses TDMA. :(

- John
From: ninjarat Date: January 12th, 2005 09:57 pm (UTC) (Direct Link)
T-Mobile = Cingular? Not.

T-Mobile, formerly OmniPoint, is exclusively GSM. It has never offered TDMA service and has never resold Cingular service in any fashion.
eryn_ From: eryn_ Date: January 12th, 2005 10:03 pm (UTC) (Direct Link)
Since they've known about this for 10 months and didn't tell anyone it seems pretty clear that T-Mobile is a poor choice of a service provider.

I'm starting to feel really vindicated in my anti-technology stances. At least I wasn't one of the people who signed up with them in the middle of the known problem and destroyed my life preventably.
From: ninjarat Date: January 12th, 2005 10:10 pm (UTC) (Direct Link)
Since they've known about this for 10 months and didn't tell anyone...

...thus alerting the suspects in an ongoing international investigation that they were under investigation leading to them disappearing...

Yup, I'm a T-Mobile customer, have been for years and I have no plans to switch.
eryn_ From: eryn_ Date: January 12th, 2005 10:17 pm (UTC) (Direct Link)
[sarcasm]I'm sure all the people who signed up with T-Mobile during the investigation will be reassured that everything was done to protect their personal information. [/sarcasm]

You're saying there is nothing they could have done. I'm saying if they couldn't find a way to keep from making the problem worse, then I don't want to do business with them. These are not mutually exclusive ideas.

And yes, if I did business with a company that allowed all my personal data to be strewn across the world, I probably wouldn't move my business either. It's too late to anything but run the risk of telling the 3 people who don't already know everything about you.
From: ninjarat Date: January 12th, 2005 10:24 pm (UTC) (Direct Link)
I said nothing of the sort. I said that T-Mobile complied with the instructions of the federal investigators on the case.
7threality From: 7threality Date: January 13th, 2005 01:23 pm (UTC) (Direct Link)
But no one said the feds were smart.

The investigation wound up in October. It's now the middle of January and this is just coming out, and it's not coming out from T-Mobile.

As soon as this turkey (and the others) were arrested, T-Mobile should have given a blanket announcement, at the very least in the places they are required to by law, telling their customers that "due to a federal investigation, we were not able to release this information, but now that the investigation is over, we can say that your personal information has likely been compromised, and it would be prudent to watch for fraudulent activity".

They don't have to say who the turkey was, or how things were compromised, just that something went horribly south and that their customers may be compromised. With the opening of the line, the delay (and problems that it caused) can be laid squarely at the feet of the feds. Since they did not make the announcement, they should be barred from doing business in those states that do require such disclosure by law.

Now, this article, and any others like it, that give the name of the perp who did this make the fed treating him with kid gloves to use him in another sting like this pointless. However, given the track record of the government, I'm betting that they won't consider this and try to use him and wonder why they get led in circles.
From: ninjarat Date: January 13th, 2005 04:26 pm (UTC) (Direct Link)
Maybe. One thing I've learned is that rarely is journalism (or "journalism") truely objective. I also take claims by "a source" with a grain of salt. I do not have the whole story so I am not going to get worked up about it, simple as that.
7threality From: 7threality Date: January 13th, 2005 06:41 pm (UTC) (Direct Link)
I agree, every paper has a "slant".

However, whether you panic or not, you should keep an eye out for fraudulent activities with your name attached. It's as simple as that. Your info has likely been compromised (regardless of what the company is saying).
From: ninjarat Date: January 13th, 2005 07:06 pm (UTC) (Direct Link)
Absolutely. I'm not stupid. :)

In fact, I keep very close watch on my statements, have for as long as I've had them.
7threality From: 7threality Date: January 13th, 2005 07:43 pm (UTC) (Direct Link)
I apologize if I implied that you were. I didn't know how closely you monitored things.

Personally, I watch my statements and bills, but I don't go so far as to get an annual credit report. If I had any suspicion that my SSN was in the hands of someone else, I'd get the credit report too.
chiieddy From: chiieddy Date: January 13th, 2005 06:12 pm (UTC) (Direct Link)
According to an article appearing in today's Boston Globe:

T-Mobile acknowledged the hacker was able to view the names and Social Security numbers of 400 customers, all of whom it said were notified in writing about the break-in. It said customer credit card numbers and other financial information never were revealed.
7threality From: 7threality Date: January 13th, 2005 06:38 pm (UTC) (Direct Link)
That's good that the company sent info in writing.

1) I don't believe for an instant that it was limited to 400 customers, unless they do something very strange with the customer information and it's locked away in lots of 400 names.
2) If you have the SSN and name of a person (and address, but that's not necessary), you can get all the rest of a person's financial information.

Then again, I'm just a bit paranoid.