Verizon has recently become the subject of a major online attack, with its Enterprise Solutions arm being the victim of a data breach. The details of approximately 1.5 million business customers of Verizon Enterprise have been acquired by online criminals, with a post on one hacking forum earlier this week advertising the sale of the entire customer database acquired in the attack for $100,000, or $10,000 for a collection of 100,000 of the stolen records.
After the discovery of the advertisement, Verizon Enterprise told Krebson Security that it had identified a flaw in its site that allowed hackers to steal contact information for its customers.
“Our investigation to date found an attacker obtained basic contact information on a number of our enterprise customers. No customer proprietary network information (CPNI) or other data was accessed or accessible,” said the company.
The company is now in the process of alerting those affected by the security breach. Due to the nature of it being an enterprise-focused arm, it is unlikely normal home users will be affected by the breach, with the data most likely consisting of contact information for businesses, typically technical managers at major companies.
Krebs notes a sense of irony in this incident, as Verizon Enterprise Solutions is typically employed by other companies to find out what happened during other security breaches.