Tuesday, 23 January 2018
Latest news
Main » Including phone numbers and PINs - exposed by vendor

Including phone numbers and PINs - exposed by vendor

13 July 2017

Vickery told CNN that the data were exposed by NICE Systems, a company based in Israel that Verizon was working with to facilitate customer service calls.

An security firm revealed on Wednesday that information on as many as 14 million Verizon accounts was exposed on an unsecured server.

The data was downloadable by anyone with the easy-to-guess web address.

The data repository "was totally publicly accessible, anyone entering a URL in a browser would have been able to access it", said Dan O'Sullivan, cyber-resilience analyst with UpGuard, the Mountain View, Calif. company that found the data.

Bank of Canada makes sharp jump in interest rates
This was the first rate hike in Canada in the last 10 years but the BOC had signalled it very clearly more than a month back. That compared with its April forecast for growth of 2.6 per cent this year, 1.9 per cent next year and 1.8 per cent in 2019.

Chris Vickery, director of cyber risk research at UpGuard, has discovered more sensitive information exposed on an unprotected "bucket" on an Amazon AWS server.

"But it's equally suspicious is that this company with close government ties, a history of phone cracking and of supporting surveillance, would have ungoverned access to sensitive data and treat security so casually". A PIN is the Holy Grail for hackers as they can easily access online accounts such as emails and banking and impersonate customers.

The details were stored in log files, which were recorded and analyzed by Nice.

Verizon subscribers be warned: a security risk has left millions of customer records exposed.

Cell cancer therapy holds promise, longer-term results await
Cancer cells arise from normal cells, so the immune system doesn't always recognize that anything is wrong. When approved, the treatment will initially be available at 30 or 35 dedicated centres in the US.

Each record included the customer's name, mobile number, and account PIN, along with their home address, email address, and their Verizon account balance. But most of the customer records are in part or entirely visible. It could even allow someone to bypass two-factor authentication and hijack any call or text sent to the customer. He called it "the latest in a series of disturbing data breaches".

NICE Systems technology is used in Verizon's back-office and call center operations. In addition to customer engagement, the company's crime and compliance unit provides fraud prevention, brokerage compliance, and enterprise-wide case management services for financial institutions and regulatory authorities. The third party did not properly set up their security systems, leading to vulnerabilities. "Companies like Verizon must insist that third party vendors like Nice protect their customer data as they move it to the public cloud". "Unfortunately, the vendor's employee incorrectly set their AWS storage to allow external access".

Experts are strongly advising Verizon customers to quickly change their PIN codes.

Wimbledon: Roger Federer storms into semis after beating Milos Raonic
I tried what I could do from yesterday, to get it in the condition where I'm able to play". "Am I surprised? Maybe a little bit. Earlier this year, at the age of 35 years and 174 days, Federer won the Australian Open for Grand Slam title No. 18.

Including phone numbers and PINs - exposed by vendor