O2 binds Bluebook SMS security bug

Back to the article

Christian

Can you trust basic shoddy programming? #

Posted Wednesday 20th February 2008 09:31 GMT

This is a basic mistake, done by amateurs. Hopefully they haven't sent athe information via a form post instead thinking that is more secure!

Disgraceful, O2 should be ashamed.

Cambon

honestly! #

Posted Wednesday 20th February 2008 10:47 GMT

I know! and as for basic English mistakes such as 'athe information via a form post instead '! Heads should roll!

Joe

I'll confirm I reported this on the 4th #

Posted Wednesday 20th February 2008 11:01 GMT

I reported this, but I didn't post it to the media as I thought it was somewhat irresponsible to do so and once fixed it is kind of a moot point really.

It was fixed by the end of Monday 11th and my initial phone call was.... 5pm-ish Monday 4th February. I asked to speak to a manager, they rang me back at 7pm. Midday Tuesday another manager rang for permission to give my details to someone else. Someone else rang me on Wednesday, I emailed them screenshots and a description around 4.20pm Wednesday. Tuesday 12th had a voicemail from the same someone else to check the problem was solved.

Without doubt the hardest part was explaining that this wasn't just a case of someone else using my computer and me needing to clear my cache.

Anonymous Coward

Disgraceful, O2 should be ashamed? #

Posted Wednesday 20th February 2008 15:04 GMT

Why should O2 be ashamed? They didn't write the bluebook application. I have it on strong authority that they are using a third party piece of software from a company called newbay called lifecache to host bluebook, so it is not their coding error, it is the fault of a third party and all blame should lie with them.

http://www.newbay.com/productsandservices.php

Forums

Forums home

Sign up, sign up for The Register's weekly IT security newsletter - click here