cyber Breach

Sprint

May 11, 2023 1 min read
Sprint

US mobile network operator Sprint said hackers broke into an unknown number of customer accounts via the Samsung.com.

The personal information that have been viewed includes the following: phone number, device type, device ID, monthly recurring charges, subscriber ID, account number, account creation date, upgrade eligibility, first and last name, billing address and add-on services.

Sprint said the information hackers had access to did not pose a substantial risk of fraud or identity theft, although, many might disagree with its assessment.

The company said it re-secured all compromised accounts by resetting PIN codes, three days later.

Source: https://www.zdnet.com/article/sprint-says-hackers-breached-customer-accounts-via-samsung-website/

TPRM report: https://scoringcyber.rankiteo.com/company/sprint

"id": "spr13427323",
"linkid": "sprint",
"type": "Breach",
"date": "06/2019",
"severity": "50",
"impact": "2",
"explanation": "Attack limited on finance or reputation"
{'affected_entities': [{'customers_affected': 'Unknown',
                        'industry': 'Telecommunications',
                        'location': 'United States',
                        'name': 'Sprint',
                        'type': 'Company'}],
 'attack_vector': 'Compromised Accounts',
 'data_breach': {'number_of_records_exposed': 'Unknown',
                 'personally_identifiable_information': ['phone number',
                                                         'first and last name',
                                                         'billing address'],
                 'sensitivity_of_data': 'Medium',
                 'type_of_data_compromised': ['Personal Information']},
 'description': 'Hackers broke into an unknown number of Sprint customer '
                'accounts via the Samsung.com website. The compromised '
                'information included phone number, device type, device ID, '
                'monthly recurring charges, subscriber ID, account number, '
                'account creation date, upgrade eligibility, first and last '
                'name, billing address, and add-on services. Sprint re-secured '
                'the accounts by resetting PIN codes three days later.',
 'impact': {'data_compromised': ['phone number',
                                 'device type',
                                 'device ID',
                                 'monthly recurring charges',
                                 'subscriber ID',
                                 'account number',
                                 'account creation date',
                                 'upgrade eligibility',
                                 'first and last name',
                                 'billing address',
                                 'add-on services'],
            'identity_theft_risk': 'Low'},
 'initial_access_broker': {'entry_point': 'Samsung.com'},
 'motivation': 'Unknown',
 'post_incident_analysis': {'corrective_actions': ['Resetting PIN codes']},
 'response': {'containment_measures': ['Resetting PIN codes']},
 'threat_actor': 'Unknown',
 'title': 'Sprint Customer Accounts Breach',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Samsung.com'}
Published by
Roshni Ray
Roshni Ray
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.