A T-Mobile gaffe has led to claims the company was intercepting customers' secure email correspondence.
Customers had complained of not being able to send TLS-secured SMTP email over T-Mobile 3G.
One user noted in a forum in November that when connected to Wi-Fi, emails were sent instantaneously. Despite T-Mobile support teams attempting to solve the issue, the affected user continued having issues.
We have worked with our supplier to fix this issue and it has now been resolved.
T-Mobile has revealed a botched firmware upgrade was to blame.
"We would like to reassure our customers that we do not use our network to access the content of their emails nor are we doing anything that would jeopardise their data security," a T-Mobile spokesperson said.
"Following a firmware upgrade we were made aware of a fault by a small number of our customers in December. This fault was mistakenly preventing certain SMTP traffic. We have worked with our supplier to fix this issue and it has now been resolved. A small number of customers will have been affected by this error and we apologise for any inconvenience caused to them."
A T-Mobile spokesperson said the firmware upgrade took place in September.
T-Mobile blocks certain traffic, such as spam and blacklisted websites typically coming through unauthenticated SMTP. The vendor claimed it was attempting to continue blocking such traffic.
Nevertheless, the mistake was not fixed for between three to four months.
VPN issues?
Web developer and security researcher Mike Cardwell complained about the SMTP traffic blocking earlier this month, but also claimed he was unable to access his VPN via his phone.
"With the new SIM, no matter which port I configure OpenVPN on, the RST [reset] packets appear. IMAP over SSL on port 993 works fine, but if I switch that off and configure OpenVPN to listen on port 993, it is blocked," Cardwell said in a blog post.
"So the blocks aren't even port based. They've got some really low level deep packet inspection technology going on here."
However, T-Mobile said it had not seen any issues with VPN access.
"The majority of our customers are able to access VPN's providing the proposition they have bought has been set up in this way," the spokesperson added.
"Customers requiring VPN access can check with us before making a purchase, all details will also be included in the terms and conditions."
All customers who breach the fair use policy will be blocked for VPN usage, T-Mobile said.
-
Bigger salaries, more burnout: Is the CISO role in crisis?In-depth CISOs are more stressed than ever before – but why is this and what can be done?
-
Cheap cyber crime kits can be bought on the dark web for less than $25News Research from NordVPN shows phishing kits are now widely available on the dark web and via messaging apps like Telegram, and are often selling for less than $25.
-
State-sponsored hackers delay new Microsoft Exchange Server by four yearsNews Hafnium's devastating zero-day exploit chain in 2021 forced Microsoft to improve the security of current versions instead of releasing the new one on schedule
-
Head to Head: Mac OS X 10.7 Lion vs Windows 7Reviews The eternal question: which is better, Windows or Mac OS? With the release of a new Mac OS, 10.7 Lion, David Ludlow takes another look at this age-old debate.
-
Mac OS X 10.7 Lion Server reviewReviews A server operating system that costs just £35 and is easy to configure must have a catch. Ian Betteridge ventures gingerly into the Lion's den to find out in our review.
-
Samsung Galaxy S2 reviewReviews The new Samsung Galaxy S2 is an impressive smartphone, but is it enough to tempt Julian Prokaza away from his iPhone? Read on to find out.
-
Winfrasoft Gateway Appliance 9500-DE reviewReviews Winfrasoft provides Microsoft powered security appliances with a difference as it uses Tier-1 hardware platforms. Is this enough to make them the best choice for running Forefront TMG 2010? Read this review of the 9500-DE Gateway Appliance to find out.
-
Sun brand lives on as Oracle launches telecoms serversNews Oracle has continued to carry on the success of Sun Microsystems’ Netra brand with the introduction of two new products.
