A computer hacker had access to all the Sidekick related boxes at T-Mobile according to Security Focus. Which means the not only had access to all the pictures (naked I presume) Paris Hilton was taking of herself, Snoop’s dirty laundry but also customer passwords and social security numbers. In addition he had access to some US Secret Service emails as well. Not that secret at all. The hacker in question is 21-year-old Nicolas Jacobsen, who was quietly charged this past October. The big question is can you trust the wireless companies any more? Why did T-Mobile issue a notice? It is required to do so under California anti-identity theft law, SB 1386. This is a big big problem and I am pretty sure is going to raise its ugly head again.
According to court records the massive T-Mobile breach first came to the government’s attention in March 2004, when a hacker using the online moniker “Ethics” posted a provocative offer on muzzfuzz.com, one of the crime-facilitating online marketplaces being monitored by the Secret Service as part of Operation Firewall. “[A]m offering reverse lookup of information for a t-mobile cell phone, by phone number at the very least, you get name, ssn, and DOB at the upper end of the information returned, you get web username/password, voicemail password, secret question/answer, sim#, IMEA#, and more,” Ethics wrote.
It has been more than six hours since the Sidekick Hacked story started making the rounds of the Internet. T-Mobile USA has not issued a single statement or press release. It is clearly in breach of California law. The silence is deafening and maddening at the same time. Emails and voice mails have been dispatched to the PR departments, …. but nothing!