Verizon says no customer data lost in reported breach

  • Verizon says no customer data lost in reported breach

Verizon says no customer data lost in reported breach

ZDNet, the first to report the data breach said with your PIN out in the cyber world it can lead to phone number hijacking and account takeovers, which could allow hackers to break into your email and social media.

Verizon, in a statement to CNBC, apologized to their customers, but said reports that customers PIN numbers were available were not actually connected to customer accounts and were instead numbers used to confirm customers at call centers. Upguard earlier said up to as many as 14 million people were affected. The company is involved in two main enterprise software market: customer engagement and financial crime and compliance including tools that prevent money laundering and fraud. "The long duration of time between the initial June 13th notification to Verizon by UpGuard of this data exposure, and the ultimate closure of the breach on June 22nd, is troubling".

As a responsible researcher, Vickery informed Verizon in June and the data was secured within a week. The data, at least according to Verizon, is not extremely sensitive, but does include some personal information, like phone numbers and authentication PINs used to contact call centers.

There are six folders for each month, from January to June. They would only need to convince an agent from customer service that they're indeed the owner of the account. Better change your account personal identification number (PIN), if you have one.

With free access to the account, an attacker could make whatever changes to service that they want, theoretically adding lines or specific features.

The leakage incident apparently happened due to a security measure that was not set up correctly by Nice.

The same type of issues involving Amazon S3 storage servers led to the exposure of the personal information of nearly 200 million registered USA voters last month.

The danger was discovered by UpGuard's Chris Vickery, a cyber security expert when he looked into the Amazon S3 server that housed millions of customer data. This means Verizon data stored in the cloud was temporarily visible to anyone who had the public link.

Curiously, Amazon S3 lockers are set as private by default, so it truly was a case of a third-party contractor leaving the door open.