[Dshield] Blackberry Hack?
dentonj at gmail.com
Tue Mar 1 15:23:01 GMT 2005
On Wed, 23 Feb 2005 07:53:45 -0700, Jeffrey Denton <dentonj at gmail.com> wrote:
> At least one person was able to access her account by resetting her
> password and guessing the answer to the "secret question".
"The Justice Department and the U.S. Secret Service have handled the
Jacobsen prosecution with unusual secrecy, and T-Mobile has been
tight-lipped on how the hacker penetrated their systems. But two
sources close to the case and a hacker friend of Jacobsen's who hosted
some of his purloined files all point to the same security hole: a
vulnerability discovered in early 2003 in the WebLogic application
server produced by San Jose, California, company BEA Systems."
More information about the list