A contribution to MEF’s blog from Xconnect’s Lee Suker has recently reported issues around Personal Data Leaks that could be generated by accessing HLR lookup services.
The problem is serious but many operators have dealt with it equally seriously. However, 1 in 3 operators has not yet addressed this security hole. This is a fundamental building block of the mobile ecosystem, and underpins valuable services such as message routing, or checking SIM-Swap.
While no major issues have been reported yet, the suggestion of problems around such a fundamental part of the ecosystem should give us pause, nor we can run the risk of operators cutting the cord on an important service for the wider ecosystem.
A solution needs to be considered with the participation of the full ecosystem – I’d be interested to hear other viewpoints on this issue