A security researcher by the name of Evan Connelly made an unsettling, but super important discovery some weeks ago that concerns millions of Verizon users: we’re talking about a privacy breach here.
A security researcher by the name of Evan Connelly made an unsettling, but super important discovery some weeks ago that concerns millions of Verizon users: we’re talking about a privacy breach here.
As he writes on his blog, he identified a security vulnerability in Verizon’s Call Filter app for iPhones and iOS devices, which allows a bad actor to get and see the call history logs of Verizon users.
The issue gets real concerning when taking into account that the bug allowed anyone with some technical knowledge to access the incoming call history of any Verizon phone number – without needing to hack into a phone, guess a password, or even alert the victim.
At the core of the problem was a vulnerability in how the app requested and received call log data. When users opened the app to view recent calls, it would send a request to a remote server, identifying the user’s phone number and asking for matching records.
