Telecommunications company AT&T has trashed claims that the own data of 70 million of its consumers has been stolen by the threat actor ShinyHunters.
The cyber-thief, whose prior exploits have impacted Microsoft, Dave, Tokopedia, Pixlr, Mashable, and Havenly among other people, posted information of the details theft on an underground hacking discussion board previously this month.
Protect your privacy by Mullvad VPN. Mullvad VPN is one of the famous brands in the security and privacy world. With Mullvad VPN you will not even be asked for your email address. No log policy, no data from you will be saved. Get your license key now from the official distributor of Mullvad with discount: SerialCart® (Limited Offer).
➤ Get Mullvad VPN with 12% Discount
On the discussion board, ShinyHunters shared a small sample of the details they assert to have swiped from AT&T. The danger actor also provided to market the entire database for the cost of $1m.
Scientists at RestorePrivacy analyzed the sample of information shared by the danger actor.
“We examined the sample, and it seems to be authentic based mostly on obtainable community records. Moreover, the user who posted it has a history of key facts breaches and exploits,” wrote researchers in a blog post.
They added: “Whilst we simply cannot however ensure the data is from AT&T clients, everything we examined seems to be legitimate.”
Scientists believe that ShinyHunters has accessed client info which includes names, phone figures, physical addresses, email addresses, Social Security figures, and start dates.
The hacker told RestorePrivacy that all the allegedly stolen details associated to AT&T customers found in the United States. Although they would not expose how they obtained the data, ShinyHunters did say that they experienced accessed 3 encrypted strings of info that provided dates of delivery and Social Security quantities.
In an update to a blog post published August 19, the researchers explained that AT&T experienced denied the breach.
An AT&T company communications officer told RestorePrivacy: “Based mostly on our investigation today, the data that appeared in an internet chat home does not seem to have occur from our systems.”
Scientists described the firm’s reaction as “exciting” and mentioned that “the assert that this was posted in an ‘internet chat room’ is basically not proper. It was posted in a well-recognized hacking discussion board by a person with a background of huge (and confirmed) exploits.”
The communication firm’s remark came as no shock to ShinyHunters.
The risk actor told researchers: “It does not surprise me. I feel they will continue to keep denying until finally I leak all the things.”
Some components of this short article are sourced from:
www.infosecurity-magazine.com