Phone hacking: the telco angle

Chris Edwards chris-ukcrypto at
Thu May 2 12:50:04 BST 2013

On Wed, 1 May 2013, Roger Hayter wrote:

> They told us we needed to set a PIN to make it secure.  They, probably 
> correctly, calculated that more people would be annoyed by having to set

There's a difference between retrieving voicemail on the handset itself, 
versus being able to dial in and access it from any phone (which I gather 
is what the newspapers were abusing).

Back in the day, I recall Orange would only allow access from the handset, 
UNLESS a PIN was set, in which case access was allowed from anywhere. 

I imagine most of their customers never knew about the remote access 
option, never set a pin, yet weren't vulnerable.  

More information about the ukcrypto mailing list