Categories: Data Breach

Verizon Wireless Confidential Data Leaked Accidentally by Its Employee

Verizon Wireless Confidential Data Discovered from Publicly Access Amazon AWS S3  Bucket contains the  Confidential information About internal Verizon Wireless system.

The File Size of the Bucket Around 100 MB of Data that contains the information of  DVS (Distributed Vision Services).

Also Read:  Auto Tracking Company Sever Misconfiguration Leaks Over a Half Million Personal Records Online

According to Kromtech Security researchers,  DVS is the middleware and centralized environment for all of Verizon Wireless (the cellular arm of VZ) front-end applications, used to retrieve and update the billing data.

Discovered Repository files named as  “VZ Confidential” and “Verizon Confidential” which contains some sensitive information such as usernames, passwords.

These Credential information helps to easily allow access to other parts of Verizon’s internal network and infrastructure.

Publicly Access Repository contained information about,129 saved Outlook messages with access info and internal communications, B2B payment server names and info, Command notes, logs including, Admin user info that could potentially allow access to other parts of the network.

Further Analysed Conformed that this information about the  Verizon Wireless was self-owned by Verizon Wireless engineer and it did not belong or managed by Verizon.

According to Bob Diachenko, chief security communications officer, Kromtech“Our primary goal is to notify and secure the data not dispute if they are being honest or not. As more and more data leaks occur it makes consumers, and average individuals more vulnerable online.”

“We believe that companies have an obligation to not only take the proper security measures but also protect the data their employee collect and store”.

Balaji

BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Recent Posts

LightSpy iOS Malware Enhanced with 28 New Destructive Plugins

The LightSpy threat actor exploited publicly available vulnerabilities and jailbreak kits to compromise iOS devices.…

2 days ago

ATPC Cyber Forum to Focus on Next Generation Cybersecurity and Artificial Intelligence Issues

White House National Cyber Director, CEOs, Key Financial Services Companies, Congressional and Executive Branch Experts…

3 days ago

New PySilon RAT Abusing Discord Platform to Maintain Persistence

Cybersecurity experts have identified a new Remote Access Trojan (RAT) named PySilon. This Trojan exploits…

4 days ago

Konni APT Hackers Attacking Organizations with New Spear-Phishing Tactics

The notorious Konni Advanced Persistent Threat (APT) group has intensified its cyber assault on organizations…

4 days ago

Google Chrome Security, Critical Vulnerabilities Patched

Google has updated its Chrome browser, addressing critical vulnerabilities that posed potential risks to millions…

4 days ago

Notorious WrnRAT Delivered Mimic As Gambling Games

WrnRAT is a new malware attack that cybercriminals have deployed by using popular gambling games…

4 days ago