CP
cyberpings
BreachesHIGH

Data Breach - Major Verizon Retailer's Records Stolen

SCSC Media
Russell CellularVerizondata breachcustomer recordsScattered Lapsus$
🎯

Basically, hackers stole a lot of customer information from a Verizon store and are selling it.

Quick Summary

A major data breach has hit Russell Cellular, a Verizon retailer, with over 6.3 million customer records stolen. This breach poses significant risks to customers and employees alike. Immediate action is required to protect sensitive information.

What Happened

In a significant security breach, Russell Cellular, a major Verizon authorized retailer, has reportedly had over 6.3 million customer records stolen by hackers. The attackers are allegedly selling this data for $1,200 on a dark web data leak site. The dataset, which amounts to nearly 61 GB, contains sensitive information including full names, phone numbers, email addresses, account numbers, and more. This incident raises serious concerns about the security of customer data and the potential for misuse.

The breach comes amid ongoing security challenges for Verizon, with the Scattered Lapsus$ Hunters hacking group recently claiming responsibility for attacks against the telecommunications giant and other global organizations. This pattern suggests a troubling trend in the frequency and scale of data breaches affecting major companies.

Who's Affected

The breach primarily impacts Russell Cellular's customers, with sensitive information now in the hands of malicious actors. Customers whose data has been compromised may face risks such as identity theft and unauthorized access to their accounts. Additionally, employees' credentials were also exposed, which could lead to further security vulnerabilities within the company.

The potential for credential stuffing attacks is particularly alarming. If employees have reused passwords across different platforms, hackers could exploit this to gain access to internal systems, putting both customer and employee data at risk.

What Data Was Exposed

The stolen dataset includes various types of sensitive information:

  • Full names and phone numbers
  • Email addresses
  • Account numbers and invoice details
  • Device identifiers and contract information
  • Employee credentials and access roles

This breadth of data not only poses risks to individual customers but also opens avenues for social engineering attacks targeting both customers and employees. The attackers could use this information to manipulate victims into revealing more sensitive data or performing actions that compromise security.

What You Should Do

If you are a customer of Russell Cellular, it is crucial to take immediate action:

  • Change your passwords: Update passwords for any accounts associated with your email or phone number, especially if you use the same password elsewhere.
  • Monitor your accounts: Keep a close eye on your financial statements and accounts for any suspicious activity.
  • Enable two-factor authentication: This adds an extra layer of security to your accounts, making it harder for unauthorized users to gain access.
  • Stay informed: Follow updates from Russell Cellular regarding the breach and any additional steps they may recommend.

For employees, it’s essential to review security protocols and ensure that strong, unique passwords are used across all platforms. Regularly updating passwords and being vigilant about potential phishing attempts can help mitigate risks stemming from this breach.

🔒 Pro insight: The exposure of employee credentials significantly increases the risk of internal system breaches and targeted social engineering attacks.

Original article from

SC Media

Read Full Article

Share

Related Pings

HIGHBreaches

Data Breach - Aura Exposes 900,000 Marketing Contacts

Aura confirmed a data breach exposing 900,000 customer records. Names and emails were compromised, raising identity theft concerns. Aura is notifying affected individuals and working with experts.

BleepingComputer·
HIGHBreaches

Data Breach - Over 670,000 Affected by Marquis Software Attack

A massive data breach at Marquis Software has impacted over 670,000 individuals. Sensitive information, including Social Security numbers, has been exposed. This incident raises serious privacy concerns for numerous financial institutions involved. Stay alert for updates and protective measures.

The Record·
MEDIUMBreaches

Stryker - Restoring Ordering and Shipping Systems After Attack

Stryker is recovering from a cyberattack that disrupted its ordering and shipping systems. The company believes the threat is contained and is restoring operations. This incident highlights the importance of cybersecurity in healthcare.

Cybersecurity Dive·
HIGHBreaches

Data Breach - Marquis Exposes 672,000 Personal Records

Marquis has revealed a ransomware attack affecting over 672,000 people. Personal and financial data, including Social Security numbers, were stolen. This breach raises serious security concerns for those affected.

TechCrunch Security·
HIGHBreaches

Data Breach - Intuitive Hit by Phishing Attack

Intuitive has suffered a data breach following a phishing attack. Customer and corporate data were accessed, raising concerns about data security. The company assures that surgical systems remain unaffected.

SC Media·
HIGHBreaches

Data Breaches - UK Businesses Face Risks from Identity Security

UK businesses are facing significant risks of data breaches due to poor identity security practices. A recent report reveals that many organizations fail to deactivate ex-employee accounts promptly. This negligence, coupled with a rise in credential compromise incidents, puts sensitive data at risk. Immediate action is necessary to protect against potential breaches.

SC Media·