CNET también está disponible en español.

Ir a español

Don't show this again

HolidayBuyer's Guide
Security

Verizon customer data exposed in security lapse

Customer records on at least 14 million subscribers, including phone numbers and account PINs, were exposed for weeks.

A slipup in security left millions of Verizon customer records exposed.

More than 14 million records of subscribers who called the phone giant's customer services in the past six months were found on an unprotected Amazon storage server controlled by an employee of Nice Systems, a Ra'anana, Israel-based tech company. Verizon has a base of 113.9 million total customers.

The data was downloadable by anyone who knew where to look. Verizon said it's investigating the matter.

Chris Vickery, director of cyberrisk research at security firm UpGuard, who found the data, privately told Verizon of the exposure shortly after it was discovered in late June.

Each record included a customer's name, cell phone number and account PIN — which, if obtained, would grant access to a subscriber's account, according to a Verizon customer service representative, who spoke on the condition of anonymity because the rep wasn't authorized to speak to the press.

Several security experts briefed on the data leak warned of phone hijacking and account takeovers, which could allow hackers to break into a Verizon subscriber's email and social media accounts, even those protected by two-factor authentication.

Read the rest of the story on our sister site ZDNet.