Feeds

Irish mobile numbers just too portable

Easily stolen, quickly recovered

High performance access to file storage

The number portability system used by Ireland's mobile operators has been shown to allow someone buying a new SIM online to port any number to it, even if they neither own nor have access to the number.

The issue became evident when one Reg reader became frustrated with the process of porting his old number to his new Vodafone SIM and tried to find an easier way to achieve it. Not only did he find such a way, but in the process he discovered that he could grab any mobile number in Ireland and have it shifted to his SIM.

Our chap explained the technique involved to, but we're withholding until a fix comes along.

When we contacted Vodafone it admitted the problem, which is common to all Irish networks. The operator did however assure us that if anyone did steal a number this way they would be caught out when Vodafone made its usual call to new customers, and that the "...mobile industry has a robust port reversal system which can restore service for a customer in a matter of minutes if a port is deemed unauthorised".

Anyone filching a number this way will have paid for the new SIM by credit card and so should be traceable, it added.

Vodafone has promised to fix the loophole that makes it possible in the next couple of weeks anyway.

Number portability is immensely important in driving competition and tends to favour new entrants to a market, and the faster numbers can be ported the more punters tend to do it.

In the UK the process takes about 5 days, and the network that owns the number has to keep forwarding connections forever. Ofcom (the UK regulator) would very much like to move towards the Irish system, which operates a central database of numbers and allows punters to change networks in a matter of hours rather than days.

Next week the long-awaited appeals by O2 and T-Mobile against the cost of improving number portability will be heard. The networks also fear that a streamlined number portability service will result in less security – a concern the Irish situation would seem to bear out. ®

SANS - Survey on application security programs

More from The Register

next story
A black box for your SUITCASE: Now your lost luggage can phone home – quite literally
Breakfast in London, lunch in NYC, and your clothes in Peru
Broadband Secretary of SHEEP sensationally quits Cabinet
Maria Miller finally resigns over expenses row
Skype pimps pro-level broadcast service
Playing Cat and Mouse with the media
EE dismisses DATA-BURNING glitch with Orange Mail app
Bug quietly slurps PAYG credit - yet EE denies it exists
Like Google, Comcast might roll its own mobile voice network
Says anything's possible if regulators approve merger with Time Warner
Turnbull leaves Australia's broadband blackspots in the dark
New Statement of Expectations to NBN Co offers get-out clauses for blackspot builds
Facebook claims 100 MEEELLION active users in India
Who needs China when you've got the next billion in your sights?
Facebook splats in-app chat, whacks brats into crack yakety-yak app
Jibber-jabbering addicts turfed out just as Zuck warned
prev story

Whitepapers

Designing a defence for mobile apps
In this whitepaper learn the various considerations for defending mobile applications; from the mobile application architecture itself to the myriad testing technologies needed to properly assess mobile applications risk.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
Five 3D headsets to be won!
We were so impressed by the Durovis Dive headset we’ve asked the company to give some away to Reg readers.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.