Verizon Hacked; 1.5 Million Customers at Risk
Posted by: Timothy Weaver on 03/25/2016 09:29 AM
[
Comments
]
How much would you pay for Verizon Enterprise Solutions 1.5 million customer contact details?
The asking price is $100,000 and includes the info on some of the top Fortune 50 companies. Independent security researcher Brian Krebs found the listing in a dark web site and reports that if you don't want all the info, you can purchase pieces at 100,000 for $10,000. And they can sweeten the pot with information about security vulnerabilities in Verizon’s website.
VES has acknowledged the breach and is in the process of contacting those affected.
“Verizon recently discovered and remediated a security vulnerability on our enterprise client portal,” the company said in the emailed statement. “Our investigation to date found an attacker obtained basic contact information on a number of our enterprise customers. No customer proprietary network information (CPNI) or other data was accessed or accessible.”
“As Verizon Enterprise is typically the one notifying the public how breaches take place, and the top security experts frequently recommend Verizon’s annual Data Breach Investigations Report, it’s extremely ironic, and unfortunately another sign of our times—as breaches have become the third certainty in life—that Verizon had a security vulnerability on their enterprise client portal,” said Adam Levin, chairman and founder of IDT911, via email.
“With 99% of the Fortune 500 using Verizon Enterprise Solutions, the compromise of 1.5 million customers’ contact details could have a huge payday for hackers,” said Vishal Gupta, CEO of security company Seclore, via email. “Stealing contact information doesn’t have the immediate payoff of a credit card number, but in the long term can be extremely lucrative if leveraged correctly.”
Source: InfoSecurity
The asking price is $100,000 and includes the info on some of the top Fortune 50 companies. Independent security researcher Brian Krebs found the listing in a dark web site and reports that if you don't want all the info, you can purchase pieces at 100,000 for $10,000. And they can sweeten the pot with information about security vulnerabilities in Verizon’s website.VES has acknowledged the breach and is in the process of contacting those affected.
“Verizon recently discovered and remediated a security vulnerability on our enterprise client portal,” the company said in the emailed statement. “Our investigation to date found an attacker obtained basic contact information on a number of our enterprise customers. No customer proprietary network information (CPNI) or other data was accessed or accessible.”
“As Verizon Enterprise is typically the one notifying the public how breaches take place, and the top security experts frequently recommend Verizon’s annual Data Breach Investigations Report, it’s extremely ironic, and unfortunately another sign of our times—as breaches have become the third certainty in life—that Verizon had a security vulnerability on their enterprise client portal,” said Adam Levin, chairman and founder of IDT911, via email.
“With 99% of the Fortune 500 using Verizon Enterprise Solutions, the compromise of 1.5 million customers’ contact details could have a huge payday for hackers,” said Vishal Gupta, CEO of security company Seclore, via email. “Stealing contact information doesn’t have the immediate payoff of a credit card number, but in the long term can be extremely lucrative if leveraged correctly.”
Source: InfoSecurity
Comments
