Verizon is dealing with an incident where a hacker intercepted a database containing company employee data, including workers’ full names as well as their ID numbers, email addresses and phone numbers. Motherboard reported that the database is legitimateas the anonymous hacker contacted them last week, and they were able to verify the data by calling some of the numbers.
“These employees are idiots,” the hacker said Motherboard by chat. The hacker is seeking $ 250,000 in exchange for not leaking the database and said they are in contact with Verizon.
A Verizon representative contacted Motherboard confirming the incident, saying, “A scammer recently contacted us threatening to release easily available employee directory information against payment from Verizon. We do not believe the scam has any sensitive information and we do not plan to engage with the individual anymore. security of Verizon data is taken very seriously and we have strong resources to protect our people and systems. “
The hacker claims that they captured the database by social engineering to remotely connect to a Verizon employee’s computer. The hacker’s account, in an email sent to Viceis that they posed as internal support, forced the Verizon employee to allow remote access, and then launched a script that copied data from the computer.
The information that was stolen could still be harmful. If you’ve ever had to get support from a carrier over the phone, you may have had to deal with the various issues involved in activating your SIM card. If an alleged hacker poses as an employee and forged his number as one of the database, they could continue to use social engineering for SIM exchange fraud. The technique has been used frequently over the years, as attackers manipulated accounts with carriers such as T-Mobile and AT&T to steal cryptocurrency or access to social media, including one belonging to former Twitter CEO Jack Dorsey.