May 24, 2018

T-Mobile flaw let anyone access user info with only a phone number

A T-Mobile glitch left accounts exposed. Photo: Justin Sullivan / Getty

An exposed online interface for T-Mobile let anyone access user info knowing only a phone number.

The details: Researcher Ryan Stevenson notified T-Mobile of the bug in April, and the wireless carrier took down the problematic service the next day. The bug was first reported on by ZDNet.

  • Until it was taken down, T-Mobile had an active online tool for its computer programmers to connect its employees to the customer database, known as an API.
  • The API delivered information including address, PIN, account number and, on some accounts, tax identification number.
  • Researchers found a separate, similar T-Mobile bug in October.

A representative confirmed that T-Mobile investigated the flaw but found no sign any data had actually been stolen.

Go deeper

Netanyahu says July 1 deadline for West Bank annexation won't change

Photo: Artur Widak/NurPhoto via Getty Images

Israeli Prime Minister Benjamin Netanyahu said Monday at a Likud Party faction meeting at the Knesset, Israel's parliament, that his July 1 deadline for starting the process of annexation in the West Bank will not change, according to people in attendance.

Why it matters: The White House and the State Department have stressed over the last few weeks that the deadline set by Netanyahu is "not sacred" to the Trump administration — and that any discussion of annexation needs to be in the context of renewed Israeli-Palestinian peace talks.

Go deeper (1 min. read)Arrow22 mins ago - World

Trump threatens to move Republican convention from North Carolina if capacity reduced

President Trump on stage during the 2016 Republican National Convention in Ohio. Photo: Bill Clark/CQ Roll Call via Getty Images

President Trump threatened in a series of Monday tweets to move this summer's Republican National Convention from Charlotte if North Carolina's Democratic governor, Roy Cooper, doesn't allow the event to be held at full capacity.

The state of play: Mandy Cohen, the state's health and human services secretary, said last week that the GOP should "plan for the worst" as mass gatherings will be a "very big challenge" if the number of coronavirus cases in the state continues to increase, per NPR.

Go deeper (1 min. read)Arrow1 hour ago - Politics & Policy

The wreckage of summer

Illustration: Sarah Grillo/Axios

We usually think of Memorial Day as the start of the summer, with all of the fun and relaxation that goes with it — but this one is just going to remind us of all of the plans that have been ruined by the coronavirus.

Why it matters: If you thought it was stressful to be locked down during the spring, just wait until everyone realizes that all the traditional summer activities we've been looking forward to are largely off-limits this year.

Go deeper (2 min. read)Arrow3 hours ago - Economy & Business