Vodafone Italia announced that it suffered a data breach incident after one of its commercial partners acting as their reseller suffered a cybercriminal attack. The telecommunication services company has then notified its customers regarding the incident.
Based on the distributed notices, the cyberattack occurred at the start of September, compromising subscriber information. The exposed data contains several essential customer details, including subscription information, contact lists, and identity documents with critical data.
Fortunately, the notice assured its recipients that there was no network traffic data or account passwords that the attackers compromised during the incident.
Vodafone Italia wants its subscribers to be wary of unwanted incoming communication from unknown individuals.
The Vodafone Italia telco encourages its affected customers to be vigilant against potential phishing attacks or scams since the breach included their email addresses in the simulated data.
In addition, the notice explained that the reseller has closed access to the compromised servers and employed potent security on its systems to mitigate the chances of reinfection.
The most recent incident before this reseller incident that the telco firm experienced was the alleged attack of a hacking group called KelvinSecurity. Reports indicated that the attack happened last September, and the threat actors threatened the company to sell the stolen data.
The KelvinSecurity said they would sell nearly 300,000 stolen files totaling more than 300 gigabytes of data. These troves of data were allegedly owned by Vodafone Italia and advertised the cache on different platforms and a hacker forum.
At that time, the telco firm insisted that the data breach rumour was a hoax as they did not find evidence pointing to unauthorised access to their company’s systems.
KelvinSecurity is a notorious data seller group offering initial access to other threat groups. A couple of years ago, the group was seen by researchers trading data from a particular company after breaching a backup server.
As of now, the only thing that Vodafone Italia subscribers can do is to be careful in accepting sudden communications to unknown people, as phishing attacks or scams will increase for those affected by the data breach.
