Cell C’s online portal, My Cell C, experienced something of a lapse in security that allowed anyone with an internet connection to view the personal information of their subscribers.

A loyal customer noticed that by using a master-password, the “My Cell C My Account” portal provided access to personal details about many Cell C subscribers.

MoneyWeb reports that MyBroadband tested the glitch by using a new Cell C SIM and existing Cell C accounts. They soon found that all Cell C numbers could be accessed, except those where the user changed their online password. Those who hadn’t changed their password were exposed.

We’re talking account details, banking details, numbers called, PIN and PUK numbers and payment history. Pretty much everything required for total identity-theft.

On 2 January 2014 Cell C were alerted to the glitch, and they soon came forward with a statement confirming said glitch, as well as its termination.

Cell C can confirm that following a thorough investigation, the security flaw on our online customer portal was identified and resolved.

Cell C said that the issue probably arose out of system maintenance.

[Source : MoneyWeb]