https://www.zdnet.com/article/sprint-says-hackers-breached-customer-accounts-via-samsung-website/
By Catalin Cimpanu
Zero Day
ZDNet News
July 16, 2019
US mobile network operator Sprint said hackers broke into an unknown number of
customer accounts via the Samsung.com "add a line" website.
"On June 22, Sprint was informed of unauthorized access to your Sprint account
using your account credentials via the Samsung.com 'add a line' website,"
Sprint said in a letter it is sending impacted customers.
"The personal information of yours that may have been viewed includes the
following: phone number, device type, device ID, monthly recurring charges,
subscriber ID, account number, account creation date, upgrade eligibility,
first and last name, billing address and add-on services," the US telco said.
Sprint said the information hackers had access to did not pose "a substantial
risk of fraud or identity theft," although, many might disagree with its
assessment.
[...]
--
Subscribe to InfoSec News
https://www.infosecnews.org/subscribe-to-infosec-news/
https://twitter.com/infosecnews_
