March 9, 2014 at 14:46Norwegian provider in the browser gave the client's phone number over IP
In Norway, the other day, a problem was discovered on the side of the NextGenTel provider , which made the real threat “I will find you by ip”. On the company's routers, software was installed that issued the phone number of a specific user by his ip.
In this case, no special tools need to be used. A regular browser, we drive into the ip address bar, we get a page with information about the operation of the router. The customer’s phone number was indicated on the same page.
Of course, using a reference site like 1881.no , you could easily get a person’s name and address using a phone number.
The problem was discovered by the local Dinside website ., whose representatives informed the provider of the vulnerability found. The provider’s technical staff quickly fixed the problem, but this case shows that it can be adumb simple way in which private information of the client / user can be obtained by a third party.
All technical tools designed to protect customer / user data can be useless if you encounter errors like these that no one suspects.
By the way, not so long ago in the same Norway there was a case showing how usually local providers are sensitive to protecting the private information of their customers. The fact is that the Norwegian anti-piracy organization received the ip of a user who posted a movie on The Pirate Bay. The provider refused to provide customer data, and the case went to the Supreme Court.
This is not pre-trial provision of all possible customer data for the first telephone call ...
Via torrentfreak
In this case, no special tools need to be used. A regular browser, we drive into the ip address bar, we get a page with information about the operation of the router. The customer’s phone number was indicated on the same page.
Of course, using a reference site like 1881.no , you could easily get a person’s name and address using a phone number.
The problem was discovered by the local Dinside website ., whose representatives informed the provider of the vulnerability found. The provider’s technical staff quickly fixed the problem, but this case shows that it can be a
All technical tools designed to protect customer / user data can be useless if you encounter errors like these that no one suspects.
By the way, not so long ago in the same Norway there was a case showing how usually local providers are sensitive to protecting the private information of their customers. The fact is that the Norwegian anti-piracy organization received the ip of a user who posted a movie on The Pirate Bay. The provider refused to provide customer data, and the case went to the Supreme Court.
This is not pre-trial provision of all possible customer data for the first telephone call ...
Via torrentfreak