Cyber Mornings Daily
Cyber Mornings Daily is your go-to daily podcast for the latest cybersecurity news, trends, and insights, delivered by AI. Each episode delivers a concise and informative breakdown of the most pressing cyber threats, vulnerabilities, and breaches.
RSS iTunes YouTube Spotify Amazon MusicI see you found this webpage. Welcome to my little AI project. All audio and album art are generated with AI tools from Google. Generation is performed with a combination of Gemini for text and images, and NotebookLM for the audio portion.
April 3rd, 2025
2025-04-03
Genetic Data, Oracle Hacks, & Verizon Flaws
A vulnerability in Verizon's Call Filter API allowed users to potentially access the incoming call logs of other Verizon Wireless customers. Security researcher Evan Connelly discovered in February 2025 that the API endpoint used by the Call Filter app to retrieve a user's call history did not verify the phone number in the request against the logged-in user's phone number. As a result, by manipulating the `X-Ceq-MDN` header, any user could have requested and viewed the incoming call history of a different Verizon phone number using their own valid authentication token. Verizon addressed and patched this flaw in mid-March, stating that it only impacted iOS devices and that there was no indication of exploitation. This incident highlights potential risks associated with API security and the handling of sensitive call data.
DownloadFiletype: WAV - Size: 42 MB - Duration: 14:44m (384 kbps 24000 Hz)
Powered by Podcast Generator, an open source podcast publishing solution | Theme based on Bootstrap