Plagued with privateness scandals, the cellphone firm denies hacker has delicate data
A hacker has allegedly stolen the worker knowledge of lots of of Verizon staff, together with names, emails, cellphone numbers, and company ID numbers, Motherboard reported on Thursday. The outlet verified the database’s legitimacy by calling a number of of the numbers included.
The hacker claimed to have obtained the information by posing as inner help, satisfied an worker to allow distant entry, after which deployed a script that copied knowledge from the focused pc.
“These staff are idiots and can help you hook up with their PC beneath the guise that you’re from inner help,” the hacker instructed Motherboard after they initially made contact final week, describing how they stole the data. They’d additionally reached out to Verizon, asking for $250,000 to maintain the database’s contents secret.
“Please be at liberty to reply with a proposal to not leak you’re [sic] total worker database,” they wrote.
Whereas the communications firm confirmed it had spoken with the person – whom they known as a “fraudster” slightly than a hacker – Verizon claimed the individual had no “delicate data” and stated they’d not interact additional.
As a substitute, they praised their inner safety and insisted that they had “robust measures” in place to guard their individuals and programs. Nonetheless, provided that a minimum of a few of the worker data is present, it nonetheless poses a hazard to clients and staff alike from SIM swapping and social engineering assaults. Hackers may probably log in utilizing stolen credentials and pose as Verizon staff, convincing Verizon customers to show over their very own private data and spawning one other stage of fraud.
Verizon has been affected by hackers on each the worker and buyer ends lately, with a plague of spoofed texts late final yr concentrating on customers from their very own Verizon cellphone numbers with “phishing” hyperlinks. Customers of the corporate’s Seen service additionally reported being hacked in October, an issue Verizon initially insisted didn’t exist earlier than shifting to blaming clients for reusing passwords that they had used elsewhere.
As many as 14 million Verizon person information have been left unsecured on an Amazon server managed by Israeli firm Good Methods in 2017, together with logs of consumers who’d reached out to customer support, their cellphone numbers and account PINs.
Verizon defended Good Methods, insisting the insecure storage was an accident and claiming the one entry to the delicate knowledge was by a researcher who introduced the safety breach to their consideration.
You possibly can share this story on social media: