Although it has already been established, security issues in Apple's online store and the Asurion web site, a phone company, recently revealed the PIN for millions of mobile accounts, a report revealed Friday.
Apple vulnerability revealed the PIN for "over 72 million" T-Mobile subscribers, BuzzFeed News claimed.
Both Apple and Asurion remedied the situation after BuzzFeed shared findings from security researchers "Phobia" and Nicholas "Convict" Ceraolo. In the case of Apple, an account validation page requesting a T-mobile cell number and a PIN or social security number could potentially allow hackers to try an infinite amount of attempts ̵
The problem may have been a technical error by connecting a T-Mobile API to Apple's website, Ceraolo said.
Vulnerability in Asurion allows people who knew an AT & T user's phone number to access another form requesting a PIN, which, as Apple's page, lacked a restriction restriction.
The Apple error is not related to a violation of the T-Mobile server that exposed some of the personal information of about 3 percent of the carrier's subscribers. The attack took place on 20 August.