Telecom companies do this so that the number does not increase. But this process is not at all safe for users whose numbers are being recycled. When the new user gets your old number, then the data associated with the old number also becomes easy to access for new users. This can put privacy and security at risk for users.
New users can access the information of old users
According to new Findings from Princeton University researchers, recycling numbers can put users’ security and privacy at risk. New users can access the information of the number of old users through recycled numbers. When you change your number, you immediately forget to update your new number in all digital accounts. For example: It is possible that you are still using your old number in an e-commerce app.
Receive sensitive information of recycle number
The Princeton University report showed that after receiving the new number, a journalist started receiving blood test results and messages from spa appointment reservations. A researcher Arvind Narayanan said in the report, “We took 200 recycling numbers for a week and found that 19 of them are still receiving old user’s security / privacy sensitive calls and messages. This includes authentication passcode, prescription refill reminder Etc. Users who have been inadvertently given a recycle number may receive sensitive messages or information. “
Researchers prepared a list of 8 possible threats
According to the report, the researchers have prepared a list of 8 possible hazards that could be caused by recycling the number. One of the main dangers is that if the person who previously had this number has a finishing attack, then the person who is being recycled and given this number again can also have a phishing attack via SMS. Users are caught in a phishing attack when messages appear to be trustworthy. Attackers can also use these numbers to sign up for various alerts, newspapers, campaigns and robocalls. Attackers can also use the recycling number for SMS-certified password reset.
Researchers at Princeton University spoke to telecom companies, including the US-based Verizon and T-Mobile, but these companies have done nothing to prevent possible attacks. The report states, “We have signed up for one prepaid account each of the two largest US telecom companies Verizon and T-Mobile. These two companies provide an online interface for their subscribers to change their phone number. Huh.