Answering Machine Hacking

[rbcp]

From: http://cbs13.com/consumer/call.kurtis.kurtis.2.687222.html

 SACRAMENTO (CBS13) ― Voicemail is an easy target for thieves looking for a way to make free phone calls. You may not realize thieves have a way to hack into voice mails, figure out your password and change the outgoing message to accept collect calls. Kurtis Ming tells us it's more common than you would think.

Paul Gordon battled AT&T for months. "Ultimately this dragged on and they disconnected our 800 number which hurts for a small business," explain Paul.

Turns out, thieves figured out his password. In 48 hours they charged $13,000 in international calls to suspicious locations.

"Virtually all of them were terrorist or terrorist related countries," says Paul. "The phone company never once had any level of investigation; showed any level of concern."

This is how it works: Hackers call your voicemail, and if you have an easy password like "1 2 3 4," they access your phone system and change your voicemail to say something like "operator, I will accept the charges."

They can then make international calls, sticking you with the bill.

It also happened to Carol Lashman, she was stuck with $3,500 in charges.
"It was shocking," she says. Both Paul and Carol's carriers told them they were responsible for the bill. But Bill Nuesbuam with the Utility Reform Network says that isn't true.

"You should not be held liable for that transaction, that's basically what the law says," explains Bill.

Carol was sent to collections and Paul's carrier was after him for payment.

"They basically told us to go pound salt and ultimately took us to collections," says Carol.

After the CBS affiliate in San Francisco got involved, Sprint reversed Carol's $3500 bill and AT&T reversed Paul's $13,000 bill.

"And in 24 hours the matter was resolved," says Bill.

Here's what you can do to prevent this from happening to you: Don't use the default password and make your password difficult. If possible, block international calls and check your outgoing message from time to time, attacks usually happen on the weekends or holidays.

[Tachyon]

What's really funny is that you make a video of yourself doing this over a decade ago.

[PEneoark]

I really think it's the customer's responsibility to make sure the PIN for their VM box is something not easy to figure out.  That's what I've told my customer when they have mentioned that their VM PIN was left at the default of 1234.  It may sound cruel, but it's something that they could have easily prevented from happening.  But then again...I work for a telco.

A

[rbcp]

"˙˙˙ɥƃnoɹɥʇ llɐɔ ǝɥʇ ʇnd puɐ pɐǝɥɐ oƃ 'ǝuıɟ s,ʇɐɥʇ 'sǝʎ˙˙˙˙sǝƃɹɐɥɔ ǝɥʇ ʇdǝɔɔɐ llıʍ ı 'sǝʎ˙˙˙˙sǝʎ˙˙˙˙¿ollǝɥ" 'ʎɐs ǝƃɐssǝɯ lıɐɯǝɔıoʌ ǝɥʇ ǝʞɐɯ plnoʍ ı ʎluo  ˙ǝɯıʇ ǝɥʇ llɐ sıɥʇ op oʇ pǝsn ı

[phantom757]

I really think it's the customer's responsibility to make sure the PIN for their VM box is something not easy to figure out.  That's what I've told my customer when they have mentioned that their VM PIN was left at the default of 1234.  It may sound cruel, but it's something that they could have easily prevented from happening.  But then again...I work for a telco.

A

OMG ... a telco SPY.  I hope you work for VeriZon, cause if you do and you have read some of my other posts, you'll know that VeriZon is totally PWNED.... by ME.

[phantom757]

BTW.... I hack voicemail  ....does that make ME a terrorist?

[rbcp]

BTW.... I hack voicemail  ....does that make ME a terrorist?

Bragging about it nonstop on a public forum is one way to find out.

[phantom757]

BTW.... I hack voicemail  ....does that make ME a terrorist?

Bragging about it nonstop on a public forum is one way to find out.

DOH

[Zazen]

BTW.... I hack voicemail  ....does that make ME a terrorist?

Bragging about it nonstop on a public forum is one way to find out.

DOH

I am literally rolling around on the floor all crazy-like as I laugh.  My own mediocre attempt at humor has been highly amusing to myself. My ass has fallen off due to laughter.

[phantom757]

BTW.... I hack voicemail  ....does that make ME a terrorist?

Bragging about it nonstop on a public forum is one way to find out.

Maybe so.....tell the FBI to bring it on

[N3gativ3sanity]

What are you gonna do? Scare them away by haxing THEIR voicemail?

[ataxicwolf]

What are you gonna do? Scare them away by haxing THEIR voicemail?

you'd better not anger him!!111 he will teh hax0rz ur v01cema1lz t00! Oh GAWD!!

[m0rdekai]

BTW.... I hack voicemail  ....does that make ME a terrorist?

Bragging about it nonstop on a public forum is one way to find out.

Maybe so.....tell the FBI to bring it on

well. since you've been talking about it so much, i hacked a verizon voicemail in seattle.  (206) 984-2958.  check out the hilarious OGM i made.  My own mediocre attempt at humor has been highly amusing to myself. i pwnd their newb butts. lolroflmao.

i doesnt afraid of nothing.

[PEneoark]

I really think it's the customer's responsibility to make sure the PIN for their VM box is something not easy to figure out.  That's what I've told my customer when they have mentioned that their VM PIN was left at the default of 1234.  It may sound cruel, but it's something that they could have easily prevented from happening.  But then again...I work for a telco.

A

OMG ... a telco SPY.  I hope you work for VeriZon, cause if you do and you have read some of my other posts, you'll know that VeriZon is totally PWNED.... by ME.

I am not a telco spy.  I dont work for an ILEC like Verizon.  I work for a CLEC.  Trust me....We hate Verizon and other ILECs just as much as you guys

[JD716]

BTW.... I hack voicemail  ....does that make ME a terrorist?

Bragging about it nonstop on a public forum is one way to find out.

Maybe so.....tell the FBI to bring it on

well. since you've been talking about it so much, i hacked a verizon voicemail in seattle.  (206) 984-2958.  check out the hilarious OGM i made.  LOL i pwnd their newb butts. lolroflmao.

i doesnt afraid of nothing.

206 984 is a International Telcom line in Washington. It's also a K7 line.