Hackers Post For Sale Ad of Database Containing Info of 1.5 Million Verizon Customers

Hackers Post For Sale Ad of Database Containing Info of 1.5 Million Verizon Customers
The Verizon logo is seen at the headquarters for Northern Virginia on January 2, 2015. Paul J. Richards/AFP/Getty Images
Updated:

Verizon has been hit by hackers.

According to independent cybersecurity researcher Brian Krebs, the company’s anti-hacking task force, Verizon Enterprise Solutions—which helps Fortune 500’s respond to some of the world’s largest data breaches—was hacked.

Verizon Enterprise is renowned for its cybersecurity skills. It releases an annual report helping organizations understand threats and how to improve their defenses against breaches.

The hacker priced the contact information from the 1.5 million Verizon customers on the ad for $100,000.

However, a member of an underground cybercrime forum posted a new thread advertising the sale of a database that contained contact information of 1.5 million Verizon Enterprise customers earlier this week.

The hacker priced the contact information from the 1.5 million Verizon customers on the ad for $100,000. The seller also offered bundles of 100,000 records for $10,000 each.

Meanwhile, Verizon said that hackers had exploited a security flaw, but did not obtain access to Customer Proprietary Network Information (CPNI) or other data.

“Verizon recently discovered and remediated a security vulnerability on our enterprise client portal,” the company said in an emailed statement to Krebs.

The breach is a bit embarrassing for Verizon Enterprise.

“Our investigation to date found an attacker obtained basic contact information on a number of our enterprise customers. No customer proprietary network information (CPNI) or other data was accessed or accessible,” added Verizon.

Verizon also said it is in the process of notifying affected Enterprise customers.

The breach is a bit embarrassing for Verizon Enterprise, since their RISK Team performs cyber investigations for hundreds of commercial enterprises and government agencies worldwide. According to their website, the RISK Team examined more than 500 cybersecurity episodes in more than 40 nations in 2015.