Hackers used Samsung website to access Sprint’s customer data
The company was informed about the breach on June 22nd, 2019. The personal information which was accessed in the incident included full names, phone numbers, billing address, device ID, device type, subscriber ID, account creation date, account number, monthly recurring charges, upgrade eligibility and add-on services.
The company said it re-secured all compromised accounts by resetting PIN codes, three days later, on June 25
The Sprint account breach notification lacks a few important details, such as the number of breached accounts, the date when hackers first started accessing Sprint accounts via the Samsung.com website, and if hackers modified any customer account details
This is the second account breach notification letter Sprint is sending this year. The company also suffered another breach via Boost Mobile, a virtual mobile network and Sprint subsidiary
Read the full story on InformationSecurityBuzz: https://www.informationsecuritybuzz.com/expert-comments/telecoms-giant-sprint-suffers-data-breach-via-samsung-website/