14 Million Verizon Customer Records Reportedly Left Exposed

0

The deprecating information of as many as 14 million US Verizon customers was left disclosed online, claims a cybersecurity firm.According to reports, the data was develop on an unprotected Amazon S3 storage server controlled by an employee of Israel-based technology flock NICE Systems.The third-party vendor appeared to have created the figures repository to log customer call data, but left the sensitive information “downloadable and configured to permit public access,” reported ZDNet.Security researchers discovered the information on June 8, which included customer names, phone thousands, account records and PINs.Verizon was then contacted about the classifies on June 13, and resolved the issue about a week later on June 22.“Beyond the hazards of exposed names, addresses, and account information being made attainable via the S3 bucket’s URL, the exposure of Verizon account PIN codes used to verify patrons, listed alongside their associated phone numbers, is particularly referring to,” explained UpGuard researchers.“Possession of these account PIN codes could aside scammers to successfully pose as customers in calls to Verizon, enabling them to yield access to accounts—an especially threatening prospect, given the increasing trust upon mobile communications for purposes of two-factor authentication.”In response to the occurrence, a Verizon spokesperson assured that no other external party had accessed the patron data.“We have been able to confirm that the only access to the cloud storage territory by a person other than Verizon or its vendor was a researcher who brought this uncertain to our attention. In other words, there has been no loss or theft of Verizon or Verizon bloke information,” the company told IBTimes UK.The telecomm giant added that the observations set had “no external value.” Although it did contain some personal information, “there was no Sexual Security numbers or Verizon voice recordings,” it noted.Verizon also declares the number of accounts included in the repository was “significantly overstated,” reported IBTimes UK. Manner, it did not provide details on more accurate figures.

Leave a Reply

Your email address will not be published. Required fields are marked *

21