|
|
|
As the phone hacking scandal continues, we look at how easy it is to hack into a voicemail account
The phone hacking scandal has been dominating headlines in most of the papers for the past few days. What's missing in a lot of the coverage is seemingly quite important: just how do you hack a voicemail and how can you protect against it? We look at just how easy it is (or was) to hack into a voicemail and also provide you with some tips for securing your voicemail against hackers.
When someone says the word 'hacker' it might conjure up the image of a cunning tech-wizard doing all sorts of clever trickery. When it comes to phone hacking, a lot of the time this couldn't be further from the truth.
In some cases the allegations against the News of the World date back quite a few years (to the early 2000s) and systems and technologies have changed a lot since then.
In the past, many mobile phones came with 'default' PINs for accessing voicemails - the idea being that people would change the default PIN to something unique. If they didn't, the default PIN was all someone would need to get into a voicemail inbox. Needless to say, hacking in these days was shockingly simple.
With that in mind, here's a step-by-step guide for ‘hacking in the past': call the person you want to 'hack' on one phone, then with the line engaged call them on another phone to go through to their voicemail. Press the '*' key to access the voicemail menu and enter their PIN number. As each network had its own 'default' PIN (1234, 5555, 0000, etc.) hacking into a voicemail account wasn't that challenging.
Things have now changed. Mobile phone operators ditched default pins years ago and in order to get access to a voicemail a user will have to set up their own PIN. For clarity, we checked with the major mobile operators to find out how they currently run their voicemail systems. Here's a selection of their policies:
So how can a devious hacker get access to Sienna Miller's voicemail in this day and age? Well, on some networks a hacker would need to call the phone number in question and hope it is either engaged or it isn't answered, then enter/guess the PIN to gain access.
On other networks it is made much easier by the presence of a generic voicemail number (as on Vodafone) that asks the hacker to enter the phone number and related PIN. The problem being, both methods require that the hacker knows, or can guess, the PIN.
After all that, the issue still remains. While voicemails can still be accessed remotely, there will always be the danger that people can either guess or illegally obtain PIN numbers. The solution? Networks should stop remote voicemail access. If you're worried, the best advice we can give is to make your PIN really hard to guess, or turn your voicemail service off completely.
A new home for the Caps Lock Alert program
Hosting the files for the Caps Lock Alert program on Dropbox wasn't really working. Not least because...
Gmail users: The dot in your email address is irrelevant
For the last few months I've been getting someone else's emails. Recently I received an invitation to...
Minecraft comes to the Raspberry Pi
Great news for all Raspberry Pi owners, especially those hoping to keep their children interesting in...
The broken promise of smart TVs
Smart TVs, or internet-connected TVs as they should really be called, were supposed to make watching...
by Garryjames on A new standard for cooling fans?
by Edgar Mills on A new home for the Caps Lock Alert program
by Dave on Windows 8 - readers' first verdicts
by dave batter on Computeractive Caps Alert Update
Updating your subscription status 
Stop the government spying on you
phone hacking
hello,what the world coming to,this is disgusting,just for the phone hacking of the poor girls from soham and milly and all the parents and their familys,Rebekah brooks has a decency to be made to resign,ie as in a football team not performing what do they do sack the manager and as far as im concerned the editor in charge at the time has a responsibility,whats the use of closing the n.o.w. the paper cant collect or get information on it own somebody has put it there,and who reads it before it goes to print the editor,don't care if u print this or not,but this is just disgusting,and the people involved should be brought to justice
Posted by Edgar Mills, 08 Jul 2011
Caller ID spoofing
I don't think that's how the News Of The World did it. Didn't they use caller ID spoofing? How do we protect ourselves against that?
Posted by Will, 08 Jul 2011
Response to Will
Indeed, that is another method and with open source software now available it is easier to do than in the past. Protecting against spoofing caller ID is the responsibility of the networks and so long as you still have a hard to guess customised password on your voicemail, it shouldn't pose a problem.
Posted by Computeractive, 11 Jul 2011
Back to phone hacking
hello again,this is about landline phones which is in a way still buying or offering to pay for ur phone no,the other day agirl rand me and said she was from bt,so asked her how she got my no as ive registered forTPS,she asked who she was talking to so refused to tell her,said she couldnt help me unless she knew who she was talking to,still refused to tell her as i dont have a bt phone line but have a home phone by my isp provider,so eventually afetr some argy bargy she put the phone down,but she left a no,so waited for 1/2 hour and dialed 141plus that no,spoke to the same girl,but this time said I was detective inspector so and so and could i speak to her manager,she said no problem,was quite surprised she put me through,afetr having a fair discussion with him pushed him and pushed him until he told me how he got my no as i was registered to TPS,and this is how they get it,just for something to say u sign up for something or register for say tesco.com,on the bottom of the page when u have finished there is 2 places of how to be contacted,ie e.mail/phone,and if u put a tick in any of these this is where they buy ur informination from,so just like the N.O.W.
Posted by Edgar Mills, 11 Jul 2011
Legality
My understanding is that all stories are proof read by legal experts to check that there will be no possible legal action caused by the article.Why are the legal eagles not being indited.
Posted by Captain, 11 Jul 2011
phone hacking
Any password system that relies on digits only is not going to be secure.
Posted by E J Milan, 12 Jul 2011
Hack off
It really concerns me that the media have given so much attention to the admitted and alleged offences of the journalists involved. Sickening though these are, shouldn't the opportunity be used to review the security of mobile phone networks in general? But not just mobile phones. Your report overlooks the fact that many landline phones have remotely accessible voicemail in some form or other as well. For instance, BT's enhanced "Call Minder" service (you cannot access voicemail remotely on the basic 1571 service, which is often provided free), or on built-in systems on phones and answering machines. However, the concept of a basic 4 figure pin seems remarkably primitive in this day and age. Why haven't manufacturers incorporated voice recognition or "memorable word" software. Perhaps this could be set up separately on-line, rather than on the phone, to add to the security. However it's done, the News International scandal has highlighted an issue which needs serious attention.
Posted by Mark Savage, 12 Jul 2011
resignation
Hello at last rebekah brooks has had the decentcy to resign,she owes this to the dowler family and holly and jessica s familys,and all the service personnel who have come home in boxes,i know what im talking about as im an ex serviceman
Posted by Edgar Mills, 15 Jul 2011