http://Garage4Hackers.com
How was it Dangerous / Hackable"In theory :P, Probability Theory Probability that event A occurs P(A) = n(A) / n(S).where,n(A) - number of event occurs in An(S) - number of possible outcomesn(A) = n no of customers (huge) n(S) = no of pin combination (9000)
So if we make a program that dials into IVR and tries to authenticates into users account, Starting form account no 1000 to 2000 for password/pin 6666
The lowest possibility lets say 10 accounts. Now
Individual Users after 3 invalid attempts, there account gets blocked. And every night at 12 clock your account would be automatically activated
So if I start my brute force program at night 10 O'clock , I could try 5 different pins for 1000 accounts with out blocking any accounts
Brute Forcing IVR Applications
POC Tested on Personal Account Only.
Use a spacebar or arrow keys to navigate