Phones Effected: This vulnerability is in all of the phones currently using the U.S Cellular service (uscc.com). Although this exploitation has been done in the past, Mostly all cellular providers have been smart enough to prevent this from happening.

Exploitation: By calling the persons phone number with their own phone number using a Caller ID spoofer you thus gain full access to the voice mail without having to enter any sort of authentication. From here you can listen to voice mails, change the voice mail password, Save+Delete voice mails, dump contacts to email and change other administrative account settings. Since the phone detects that you are calling from the cell phones real number it assumes you are the user of the phone and routes right past any form of authentication.

Conclusion: I personally will be contacting the security adviser of the company about this issue on Monday to see if they will resolve it as quickly as possible. If the phone company refuses to fix the issue, Exploitation will continue. I feel this is something that should be taken care of and could possible pose as a serious risk. During the testing of this exploitation a celebrities Assistance voice mail was hacked, No names will be exposed.

And here is U.S. Cellular's response to date:

We have received your email and will be replied to within 3 days.

Dear Kimono,

Thank you for contacting Us about this vulnerabilitiy and
providing us with that information. We've forwarded the information to
the appropriate department for further assessment.

The appropriate department will be creating a fix for this issue within
2-3 months. If you have any more questions please feel free to contact
me back.

Sincerely,

Andria W.
Technical Service Specialist
U.S. Cellular®

2-3 months!? As Kimono Cupcake says, "I'm very displeased with this companies [sic] sloppy and careless response."

My followers have been busy lately...

Punkle Jones writes about the return of autumn:

This past weekend, I decided to take in the local park's selection of delectible delights. Luckily there were no zombies in sight! The trees are just about to turn orange and start raining debris on anything foolish enough to stand still - but on this day, the sun was shining and the cup of simple joy was overflowing. It was a celebration of sorts, so I brought some little friends.

This little calf likes the swingset, but keeps falling off. His butt is the wrong shape for human swings. He enjoys himself anyway!

full post

Ladyada writes about a Halloween project:

Here is a timely project for an electronic halloween pumpkin. With a bit of hacking a $1 plastic pumpkin is upgraded: a sensor embedded in the nose detects when people get close and will randomly play scary sounds and animate the LEDs on its face. The sounds are stored on an SD card so its easy to change and customize what the pumpkin says/screams, while the code is written for an Arduino so its easy to modify the behavior. I’m going to have this pumpkin outside my door to freak out the little kids who go to daycare nearby. Boo!

full post

And let's not forget Bovine Dawn. Here are some HOT-HOT-HOT topics for you to discuss:

• 6 brainwashing techniques they're using on you right now, from Cracked.com: "'They' in this case means advertisers and spin doctors, not the Illuminati...Shhh. Shh. You had me at big ol' titties."
• reflection: "I embrace the ruination of all that is because I realize that I will one day be a part of all that isn't."
• As seen on T.V.: "Heaven's Gate is still around, somehow."

In other news, Iran made a huge ostrich sandwich:

Cooks in Iran have tried to assemble the world's largest ostrich sandwich at a food festival in Tehran, as part of a bid to promote healthy eating.

The organisers want to promote Iran's fledgling ostrich farming business.

About 1,500 cooks used 1,000kg (2,200lbs) of ostrich meat to make the 1,500m (4,920ft) long sandwich.

The organisers hope those world-beating dimensions will be enough to earn a place in the Guinness Book of Records for the largest ostrich sandwich ever.

Be sure to check COWFEED and Bovine Dawn often for more gems like these.

V
Vi
Vid
Vide
Video
Video!
Video!!

New video for you to watch while trying not to think about the financial crisis recession house of cards collapsing all around you. THIS IS MORE IMPORTANT THAN ANY PRESIDENTIAL DEBATE.

OKC is a weird, sometimes really cool city that makes very little sense at all. They're really pushing the arts in the last couple of decades, with typically strange results. I wonder how much it costs to run all those flourescent bulbs?
...
Home movie is more like it, but gosh those flourescent lights are cool as hell.

Hey hey hey, kids...

It's cDc paramedia grafx #45 - "Crushing NSF Fist" by Devolish!

Raw power, I tells ya.