Sprint has informed customers of a data breach, via a hacked Samsung website, but little details are known about the security compromise…
Telecommunications company Sprint has sent a letter to its customers, informing their subscribers of a security breach into its corporate records.
Sensitive Sprint Customer Data Hacked through Samsung Website
Sprint says is was hacked, through a compromised Samsung website and reveals info such as billing addresses, phone numbers, and other account information might have been exposed.
The letter, obtained by ZDNet, explains Sprint was made aware of “unauthorized access” in June:
“On June 22, Sprint was informed of unauthorized access to your Sprint account using your account credentials via the Samsung.com “add a line” website. We take this matter, and all matters involving Sprint customer’s privacy, very seriously.
What information was involved?
The personal information of yours that may have been viewed includes the following: phone number, device type, device ID, monthly recurring charges, subscriber ID, account number, account creation date, upgrade eligibility, first and last name, billing address and add-on services. No other information that could create a substantial risk of fraud or identity theft was acquired.”
The telecom states its reset the PIN codes of affected accounts, in order to secure them, within three days time. However, the company isn’t providing critical details, such as the length of time the data remained exposed, the nature of the vulnerability, and the number of compromised accounts.