Jacob Ajit, a Virginia high school student, is likewise a hacker who located a loophole that gave him entry to T-Cellular’s LTE information community without a plan—absolutely free. “On Friday night, I used to be sitting around pretending to be first-class, having, in reality, nothing to do,” he wrote in a Medium post. “I had a TMobile prepaid SIM on a spare phone with no energetic service, so I got here up with a laugh mission: should I somehow get entry to the internet without a statistics plan?”
He could, and it turns out. Ajit located that T-Cellular permits gadgets related to its LTE community to get admission to some websites and servers without an account. That unfastened get entry extends to Ookla’s Speedtest app, which pings a nearby server to check the phone’s add and download speeds. Ookla is owned by using Ziff Davis, PCMag’s parent employer. By setting up his own proxy server, Ajit becomes able to spoof T-Cell into questioning that the information he was accessing came from Speedtest, whilst in reality, his hacked connection had free reign of the net.
The Great T-Cellular Telephones of 2016
“Similar to that, I now had access to information at some point of the TMobile community without maintaining any form of formal payments or settlement,” he wrote. “Just my phone’s radios speaking to the network’s radios, free of any artificial shackles.” He stated that it in principle, it’d be spotless for T-Mobile to smell out such a proxy that was attempting to impersonate an allowed server. All they’d need to do is restrict their admission to the servers on Speedtest’s public listing.
However, there are loads of servers, and there are probably different websites and apps that T-Cell may want non-subscribers to have got right of entry to, so imposing the sort of allowlist could be a tedious challenge. T-Cellular has now not answered PCMag’s request to touch upon whether or not it plans to restore Ajit’s loophole. Still, his publically available proxy server was not operating as of Friday afternoon.