Flawed Verizon My FiOS mobile app exposed email accounts
Verizon fixed a serious vulnerability in its My FiOS mobile application that allowed unfettered access to email accounts, according to a developer who found the problem.
Randy Westergren, a senior software developer with XDA Developers, looked at the Android version of My FiOS, which is used for account management, email and scheduling video recordings.
"Since Verizon has a good amount of my information, I thought it would be a good candidate for research," Westergren wrote on his personal blog. "I was right, and the results were astonishing." The flaw, contained in the application's API, could have allowed an attacker to read individual messages from a person's Verizon inbox and even send emails from an account, he wrote.