时间:2024-09-22 20:33:13 来源:网络整理 编辑:关于我们
This story was updated at 1:07 p.m. ET.If you're a Verizon customer, you need to change your PIN &md
This story was updated at 1:07 p.m. ET.
If you're a Verizon customer, you need to change your PIN — the personal identification number you use when contacting customer service — right now.
A security firm revealed on Wednesday that information on millions Verizon accounts was exposed on an unsecured server. The information consisted of the subscriber's name, cellphone number, and the account PIN. The last element is obviously the crucial one: With the PIN, an attacker could fool a customer-service representative into giving them access to a subscriber's account.
SEE ALSO:The NotPetya ransomware may not actually be ransomware at all — it could be something worseWith free access to the account, an attacker could make whatever changes to service that they want, theoretically adding lines or specific features. Targeting wireless accounts is also a key way cyber criminals bypass two-factor authentication (2fa) on third-party services, since many users choose to get verification codes via SMS text messages because of their convenience.
Initial reports of the breach indicated 14 million accounts were exposed, but Verizon later put out a statement that said the number was actually 6 million. The security company, UpGuard, told Verizon about the exposed data on June 13, and Verizon had dealt with the problem by June 22, CNNreported. UpGuard is the same company that discovered unsecured voter registration data on the servers of an RNC contractor in June.
The exposed customer records were from call logs that get created when a Verizon user contacts customer service. The records go back six months, so only customers who called customer service had their account information compromised. Some PIN numbers were hidden but others were exposed. Verizon says the exposed data was for a "wireline portal," meaning the accounts were for residential and business wireline services (such as FiOS) and not Verizon Wireless. The cellphone numbers were part of the data for contact purposes.
So far Verizon has not provided a way for customers to check whether or not their data was exposed, so the safest thing to do right now is to change your PIN.
An Israeli company, Nice Systems, mistakenly designated the data, which was stored on an Amazon S3 server, as "public," ZDNetreported when it broke the story. Wireless carriers like Verizon often contract other companies to manage their customer service calls and the data they generate.
Correction:This piece was updated to reflect the information in Verizon's public statement on the breach, including the number of accounts (6 million), the nature of the accounts exposed, and the level of access a PIN grants.
DNC 2024 speech: Barack Obama and Michelle Obama have a superpower no other Democrat has.2024-09-22 20:26
Now you can send money internationally through Facebook Messenger2024-09-22 20:19
Ohio will close all its bars and restaurants to slow down coronavirus2024-09-22 20:07
GPU Availability and Pricing Update: April 20222024-09-22 20:00
Best smart home deals this week at Amazon2024-09-22 19:29
Please enjoy these dogs singing along to the ‘Law & Order’ theme song2024-09-22 19:03
It's not aliens. It's never aliens. Stop saying it's aliens.2024-09-22 19:00
AirPods 2 could have hands2024-09-22 18:55
CeeDee Lamb secures record2024-09-22 18:24
No quick return for Russia, says Coe2024-09-22 18:06
CeeDee Lamb secures record2024-09-22 20:05
N. Korean provocation cannot stop US2024-09-22 19:55
芦山县工商局:城乡环境综合治理见成效2024-09-22 19:52
US has no hostile intent but N. Korea continues to provoke: state dept.2024-09-22 19:35
“大体老师”的故事:以生命点亮生命2024-09-22 19:15
US lawmaker calls for increased missile defense against N. Korean provocation2024-09-22 19:04
The worst 'Game of Thrones' villain is heading to the Marvel universe2024-09-22 18:39
Apple dismisses 200 employees from its Project Titan group2024-09-22 18:28
17 Places That Harness the Power of the Sun2024-09-22 18:26
Now you can send money internationally through Facebook Messenger2024-09-22 17:50