So you want to see what your significant other is upto, or you want to play a praticle joke on your friends..  Lets get into their cellular voicemail. This easily exploited security flaw, which affects phones on the Cingular Wireless, Sprint PCS and T-Mobile networks, can be used to listen to messages on voice-mail accounts that haven't been protected by passwords. Roughly half the country's 176 million wireless phone users are on those networks, though it isn't known how many use password protection.

Exploiting the common "lazyness" of people, we can listen to voice mail and get the phone number of the caller, change the greeting on the phone or even lock a user out of his own voice mail by setting up a password.

It seems that Cingular, Sprint PCS, and T-Moblile cellular networks allow you to set "Skip the pin" when accessing your voicemail.  What this means is that if you call YOUR OWN NUMBER from your OWN PHONE you do not have to put your pin in to access your voicemail.  This article will focus on how to use Caller ID spoofing to access peoples voicemail accounts.  In this article we will utilize an online service to accomplish the Caller ID Spoofing.  But please understand that this is not the only way of spoofing CID or ANI.  Infact this is probably the most lame way of doing it.  But in the interest of "ease-of-use" this is by far the easiest.  We will focus on "Real" Caller ID spoofing in a later article.

Want to know how those T-Mobile Hackers Did it?

Things you need

• Calling Bridge Service: We will be utilizing CovertCall
  
• Test Number to call (person you are going to hack)
• Computer with Internet Access
  

**WARNING.  THIS IS TRACEABLE AND SHOULD ONLY BE USED TO TEST YOUR PHONE.  YOU HAVE BEEN WARNED**

• Step 1)

Signup for your Calling Bridge Service *Many vendors offer this service but I feel this is the best one yet* - Cost is only 5 cents a min


* We believe this information to be correct as of Feb 7th, 2004. Please email us to help keep it updated.

• Step2)

Purchase time for you account selecting  "Add Funds" 
They offer $5,$25,$70,$250 and $800 increments.

The $20.00 dollar one is worth it - that gives you hours of fun.  Anymore and you just might never use it up.

• Step3)

Making the Call

1st Party: (10 digits)      <= Enter the number of the phone you plan to use
1st Callerid: (1-15 digits)  <= This is the number that will show up on your phone.  You can leave the 0's
2nd Party: (10 digits)   <= Enter the number of the test phone you wish to call    5555555555
2nd Callerid: (1-15 digits)  <= How would you like you number to show up on the test call phone?  - 5555555555

Click Connect

• Step 4)

You will see this appear on your screen

Calling 5555555555 using callerid 0000000000.     <= This would call your phone with 0000000000
Connecting to 5555551234 using callerid 911.       

Please be patient. The phone will ring momentarily!

You get an incoming call from 0000000000 answer the phone and you will hear a female voice say  "Connecting"

Now you should hear some ringing -- What will happen is You will call the test phone with the exact same number.

• Step 5)

Well look at you.. You are now in.. Since you are doing this to your OWN phone, poke around and see what all you can do.  But remember, this is traceable.. So if you happened to misdial your own phone or something, don't mess anything up.  You will get caught.

• Step 6)