O2 apologises and explains user data leak

MOBILE OPERATOR O2 has apologised for leaking its users' phone numbers and claimed that it is "standard industry practice" to send them to trusted sources.

Earlier today it was brought to light that O2 reveals, in plain text, the phone numbers of users who visit web pages from their mobile phones. O2 has said the phone numbers are deliberately shared with trusted partners but recently the details have been available to other web sites as well.

O2 said, "When you browse from an O2 mobile, we add the user's mobile number to this technical information, but only with certain trusted partners. This is standard industry practice."

"In between the 10th of January and 1400 Wednesday 25th of January, in addition to the usual trusted partners, there has been the potential for disclosure of customers' mobile phone numbers to further website owners."

It said that the problem was fixed at 2pm today and was caused accidentally by technical changes made during routine maintenance. The problem only occurred via a 3G or WAP connection but not WiFi. The firm confirmed that only the mobile number was sent during the mistake but no other sensitive details.

The standard practice of sending the mobile number and other data of the user to a web site is done for three reasons, according to O2. It is used for age verification, to enable third party content providers to bill for purchases and to identify customers using services like My O2 and Priority Moments.

O2 said, "We investigated, identified and fixed it this afternoon. We would like to apologise for the concern we have caused." µ