Compliance

Verizon Enterprise customer data stolen, sold online

Verizon has confirmed that customer data has been stolen from its Verizon Enterprise Solutions unit, but said the theft was limited to customer contact details.

Verizon Enterprise is a business-focused group that offers a wide range services, including helping companies recover from data breaches.

The unit, now ironically suffering from a breach of its own, did not disclose how many customers were affected, but said those involved were being notified.

The company didn’t indicate how the attackers had accessed its systems, but said the problem had been fixed.

Verizon recently discovered and remediated a security vulnerability on our enterprise client portal,” the company stated. “Our investigation to date found an attacker obtained basic contact information on a number of our enterprise customers. No customer proprietary network information (CPNI) or other data was accessed or accessible.”

Security journalist Brian Krebs had earlier reported that a hacker was offering to sell contact information on 1.5 million Verizon Enterprise customers for $100,000 (£71,000) or 10 chunks of 100,000 records for $10,000 each.

The data was listed for sale, along with information about security vulnerabilities in Verizon Enterprise’s website, on a cybercrime forum last week, according to Krebs, who didn’t name the forum involved.

Such data is useful for hackers looking to target specific individuals, often in order to trick them into installing malicious code on the company’s systems.

Such techniques have been successful in achieving several large-scale data breaches in recent months, leading attackers to employ them more regularly and in a broader range of countries, including the UK, IT security firm Trend Micro found in a recent study.

Antony Savvas

York, UK-based Antony Savvas has been a technology journalist for 25 years and has expertise in all major areas of enterprise and consumer IT. He has worked for a number of leading technology magazines and websites and his work is syndicated across the internet. He also undertakes corporate work for some of the world's leading technology companies.

Share
Published by
Antony Savvas

Recent Posts

Flashpoint enters new chapter with global partner programme

Security vendor Flashpoint debuts partner programme following $28m funding

7 years ago

Channel partner “disconnect” hindering growth

Complex buying journeys and sprawling partner networks hampering customer experience, says Accenture

7 years ago

Cyxtera launches global channel partner programme

Datacentre provider Cyxtera says launch is “milestone in our go-to-market strategy”

7 years ago

US IT provider brings mainframe services to UK

Ensono highlights importance of mainframes still to major industries

7 years ago

VASCO and Nuvias expand distribution across EMEA

Security vendor VASCO looks to replicate UK and German set up across EMEA

7 years ago

Splunk says channel investments driving growth

Splunk details investment in Partner+ programme at .conf2017

7 years ago