Kirsten Doyle reports:
Security researcher Evan Connelly recently identified a security vulnerability in the Verizon Call Filter iOS app which made it possible for a malicious actor to leak call history logs of Verizon Wireless customers.
Call logs can be highly valuable, particularly for nation-states, as they enable intelligence agencies to map social networks, track high-value targets, figure out communication patterns, and correlate metadata with other surveillance data to uncover covert operations or political affiliations. This was evident in the recent coverage of the Salt Typhoon breach of telecom networks.
“Given that this data is of such value, you’d expect that both how it’s accessed, and who is given access would be closely guarded. However, as I found, this may not be the case,” Connelly said.
Read more at Information Security Buzz.