20.5k unique visitors in the last 3 days

Hackers Sell Data for 1.5mn Verizon Customers

Security expert Brian Krebs reported that a complete database of Verizon Enterprise customers can be purchased for USD100,000.

Verizon does a very good annual report on data breaches, so it is ironic they will have to discuss their own major data breach in the next edition. Security expert Brian Krebs reported that Verizon Enterprise, the B2B arm of the business, had been hacked by criminals who were offering to sell stolen data about Verizon customers.

Earlier this week, a prominent member of a closely guarded underground cybercrime forum posted a new thread advertising the sale of a database containing the contact information on some 1.5 million customers of Verizon Enterprise.

The seller priced the entire package at $100,000, but also offered to sell it off in chunks of 100,000 records for $10,000 apiece. Buyers also were offered the option to purchase information about security vulnerabilities in Verizon’s Web site.

Verizon admitted there had been a security weakness but said it has now been addressed. They also confirmed that ‘basic’ contact information for enterprise customers had been compromised. Krebs speculated that the information had been obtained by forcing a database to dump all of its contents.

There may not be a serious threat to customers if only basic contact data has been obtained. However, it is likely that some of them will be subjected to phishing attacks. Verizon Enterprise is a supplier to many big businesses, meaning that technology managers in those firms will need to be wary of suspicious communications that seemingly originate from Verizon. As such, this breach may cause lasting damage to Verizon’s image.

Eric Priezkalns
Eric Priezkalnshttp://revenueprotect.com

During his career, Eric has been a Director of Risk Management for a national telco, the Chief Executive of the Risk & Assurance Group, a Chief Marketing Officer for a software business, a consultant, a public speaker and the publisher of Commsrisk since its launch in 2006. Look here for more about the history of Commsrisk and the role played by Eric.

The comms providers that Eric has worked for include Qatar Telecom, Cable & Wireless, T‑Mobile, Sky and Worldcom. In addition to his proficiency at speaking about the current scamdemic, Eric is also a qualified chartered accountant and a subject matter expert in consumer protection, enterprise risk management, fraud prevention, data integrity and billing accuracy. Eric was the lead author of Revenue Assurance: Expert Opinions for Communications Providers, published by CRC Press. He can be reached through the contact form on this website.

Related Articles

The Commsrisk Global Fraud Dashboard


Our Global Fraud Dashboard uses AI-powered search to collate, update and visualize data about scams and other network abuses from around the world. New charts are added each month. See it here.

Get Our Weekly Newsletter by Email