Jump to content
Login new information ×
Login new information
Donations campaign phase one 2024

Telefonica breach exposes personal data of 'millions' of customers

tao

By tao
in Security & Privacy News

Recommended Posts

tao

tao

Posted
Posted

Incident slammed as the 'greatest breach in the history of telecommunications in Spain'

 

SPANISH OPERATOR Telefonica has suffered a security breach that exposed the personal data of millions of customers.

 

The breach allowed anyone to access the billing data of other customers, according to a report at El Espanol, which noted that the incident is similar to a serious failure that hit Spain's system in July 2017 that left personal data accessible to intruders without a high level of technical skill. 

 

To access the data of other customers, users only had to be logged into the system, access their invoice and make a small change in the URL, according to the report. 

From here, anyone could access the personal data of "millions" of Telefonica customers, including landline and mobile numbers, national ID numbers, addresses, banks, names, billing history and records of calls and other data. All of these data could be downloaded in CSV format files. 

 

"Although this involved accessing random data, it would have been possible to design a program that would collect information in large quantities from the operator's systems and then analyze it," El Espanol notes. 

 

The breach came to light after a Movistar customer reported the screw-up to Spanish consumer rights group FACUA, which has since filed a complaint with the Spanish Agency for Data Protection (AEPD) and is calling the incident the "greatest security breach in the history of telecommunications in Spain."

 

Spain's AEDP is responsible for enforcing the EU's newly-introduced GDPR rules, under which Telefonica could face a fine between €10m and €20m, or 2 to 4 per cent of its annual turnover. However, Spain's data protection law limits these fines to between €300,000 and €600,000.

 

FACUA has slammed the reduced fines as "absolutely ridiculous" and is calling on the Spanish government to update the regulation.

 

Telefonica told El Espanol that "no fraudulent access has been detected " adding that it's made "all the competent authorities" aware of the breach.

 

< Here >

Link to comment
Share on other sites
  • Replies 1
  • Views 387
  • Created
  • Last Reply
Dushyantsinh Chavda

Dushyantsinh Chavda

Posted
Posted

Old goods (news) in newer name! You say it 'telefonica' aka 'google' aka 'facebook'... The master have lots of tricks and other learnt from him. ?

What name you think as 'Master'? ?

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...