Collaborate Disseminate
Mike Mimoso and Chris Brook discuss the news of the week, including the Verizon breach, the Oracle session hijacking attack, a Telegram-based hacking tool, and a free EternalBlue scanner. Continue reading Threatpost News Wrap, July 14, 2017
Data belonging to 14 million Verizon customers was exposed by a partner, which misconfigured a repository storing the personal information it had access to. Continue reading Third Party Exposes 14 Million Verizon Customer Records
The personal data of as many as 14 million U.S. Verizon customers has been exposed in a publicly accessible server owned and operated by a third-party vendor. NICE Systems, an Israeli firm that provides call center and back-office operations for Verizon, administered the server that contained customer names, addresses, account details and account personal identification numbers (PINS), according to a new report from UpGuard’s Cyber Risk Team, who discovered the breach. Given NICE Systems’ history of supplying technology for state-sponsored — and often intrusive — surveillance, these findings are concerning, the report stated. “This offshore logging of Verizon customer information in a downloadable repository should be alarming to all customers who entrust their private data to major US companies, only to see it shared with unknown parties,” the report reads. The data was stored in an Amazon Web Services S3 bucket that “appears to have been created to log customer […]
The post Report: personal data of more than 14M Verizon customers is exposed in server breach appeared first on Cyberscoop.