Wednesday, 14 November 2018
Latest news
Main » Including phone numbers and PINs - exposed by vendor

Including phone numbers and PINs - exposed by vendor

13 July 2017

Vickery told CNN that the data were exposed by NICE Systems, a company based in Israel that Verizon was working with to facilitate customer service calls.

An security firm revealed on Wednesday that information on as many as 14 million Verizon accounts was exposed on an unsecured server.

The data was downloadable by anyone with the easy-to-guess web address.

The data repository "was totally publicly accessible, anyone entering a URL in a browser would have been able to access it", said Dan O'Sullivan, cyber-resilience analyst with UpGuard, the Mountain View, Calif. company that found the data.

Mithali Raj passes milestone but Australia progresses to semifinals
India needs to win at;east one out of the two matches against Australi and New Zealand to go through to the semi-finals. After this loss, India are now placed at the fourth spot with eight points. "She is a quality player".

Chris Vickery, director of cyber risk research at UpGuard, has discovered more sensitive information exposed on an unprotected "bucket" on an Amazon AWS server.

"But it's equally suspicious is that this company with close government ties, a history of phone cracking and of supporting surveillance, would have ungoverned access to sensitive data and treat security so casually". A PIN is the Holy Grail for hackers as they can easily access online accounts such as emails and banking and impersonate customers.

The details were stored in log files, which were recorded and analyzed by Nice.

Verizon subscribers be warned: a security risk has left millions of customer records exposed.

Wimbledon: Murray out, Mueller out of gas
Murray was cruising at 6-1 but Querrey saved three set points before the Scot took it on the fourth, winning the tie-break 7-4. The final score still results in a convincing win for Murray though, with a 6-2, 4-6, 6-1, 7-5 victory ensuing.

Each record included the customer's name, mobile number, and account PIN, along with their home address, email address, and their Verizon account balance. But most of the customer records are in part or entirely visible. It could even allow someone to bypass two-factor authentication and hijack any call or text sent to the customer. He called it "the latest in a series of disturbing data breaches".

NICE Systems technology is used in Verizon's back-office and call center operations. In addition to customer engagement, the company's crime and compliance unit provides fraud prevention, brokerage compliance, and enterprise-wide case management services for financial institutions and regulatory authorities. The third party did not properly set up their security systems, leading to vulnerabilities. "Companies like Verizon must insist that third party vendors like Nice protect their customer data as they move it to the public cloud". "Unfortunately, the vendor's employee incorrectly set their AWS storage to allow external access".

Experts are strongly advising Verizon customers to quickly change their PIN codes.

MLB All-Star Game 2017: Starting lineups and how to watch
Get prep sports breaking news alerts from the Gwinnett Daily Post staff delivered to your email. Harper certainly enjoys hitting at Citizens Bank Park, something he's said in years past.

Including phone numbers and PINs - exposed by vendor