T-Cell has denied it was breached or that supply code was stolen after a risk actor claimed to be promoting stolen information from the telecommunications firm.
“T-Cell methods haven’t been compromised. We’re actively investigating a declare of a difficulty at a third-party service supplier,” T-Cell shared in a press release to BleepingComputer.
“We’ve got no indication that T-Cell buyer information or supply code was included and might affirm that the dangerous actor’s declare that T-Cell’s infrastructure was accessed is fake.”
This assertion comes after IntelBroker, a widely known risk actor linked to quite a few breaches, claimed to have breached T-Cell in June 2024 and stolen supply code.
To show that the info is genuine and originates from a current cyberattack, IntelBroker printed a number of screenshots exhibiting entry with administrative privileges to a Confluence server and the corporate’s inside Slack channels for builders.
IntelBroker describes the info they’re promoting as “Supply code, SQL information, Photographs, Terraform information, t-mobile.com certifications, Siloprograms.”
supply: BleepingComputer
Nevertheless, a supply instructed BleepingComputer that the info shared by IntelBroker is definitely older screenshots of T-Cell’s infrastructure posted to a third-party vendor’s servers, the place it was stolen.
Whereas BleepingComputer is aware of the identify of this alleged service supplier, we won’t be publicly sharing it till we are able to affirm in the event that they have been breached.
Just lately, IntelBroker has been quickly releasing new data breaches, and if all of them used this cloud supplier, it might clarify the place all the info is coming from.
Primarily based on IntelBroker’s screenshots, the hacker had entry to a Jira occasion for testing functions as not too long ago as this month.
It’s unclear how the hackers breached the supplier, however one of many leaked photographs exhibits a seek for important vulnerabilities itemizing CVE-2024-1597, which impacts Confluence Data Heart and Server and has a severity rating of 9.8 out of 10.
Whether or not the third-party vendor was breached with this vulnerability is at the moment unknown.
BleepingComputer tried to contact IntelBroker about this incident however was unable to make contact.
T-Cell has handled a number of cybersecurity incidents up to now, this one being the third that has impacted the corporate in some method in lower than two years. On January 19, 2023, the telecommunications firm disclosed that hackers had stolen the private info of 37 million clients.
In Might 2023, the cell telco revealed that information belonging to a whole lot of consumers had been uncovered to unknown attackers for greater than a month beginning in February of the identical yr.
