Verizon Communications is warning that an insider data breach impacts nearly half its workforce, exposing delicate worker info.
Verizon is an American telecommunications and mass media firm offering cable TV, telecommunications, and web companies to over 150 million subscribers throughout the U.S. The corporate has greater than 117,000 employees and has an annual income of 136.8 billion (2022).
A data breach notification shared with the Workplace of the Maine Legal professional Common reveals {that a} Verizon worker gained unauthorized entry to a file containing delicate worker info on September 21, 2023.
Verizon found the breach on December 12, 2023, practically three months later, and decided it contained delicate info of 63,206 staff.
The information that was uncovered varies per worker however may embrace:
- Full identify
- Bodily handle
- Social Safety quantity (SSN)
- Nationwide ID
- Gender
- Union affiliation
- Date of beginning
- Compensation info
Nonetheless, this incident doesn’t seem to influence buyer info.
Verizon says it’s actively working in the direction of strengthening its inner security to forestall comparable incidents from occurring once more sooner or later and famous that at the moment, there are not any indicators of malicious exploitation or proof of the info having been extensively leaked.
“Presently, we have now no proof that this info has been misused or shared exterior of Verizon on account of this challenge,” reads the Verizon data breach notification.
“We’re working to make sure our technical controls are enhanced to assist stop any such scenario from reoccurring and are notifying relevant regulators in regards to the matter.”
To guard uncovered people from the dangers posed by the security incident, Verizon has enclosed directions on enrolling in a two-year identification theft safety and credit score monitoring service within the notices despatched to impacted staff.
BleepingComputer contacted Verizon to be taught if the incident has been referred to regulation enforcement and we acquired the next reply:
Verizon not too long ago found that an worker inappropriately dealt with a file containing sure private details about some Verizon staff.
At this level, we have now no purpose to consider the data was improperly used or that it was shared exterior of Verizon.
We’re notifying the affected staff and relevant regulators in regards to the matter. Our inner overview of this matter continues.
We now have not referred this incident to regulation enforcement. There is no such thing as a indication of malicious intent nor will we consider the data was shared externally. – Wealthy Younger, Verizon spokesman
Verizon has had a comparatively calm interval concerning cybersecurity incidents prior to now few years.
The agency’s final main incident was introduced in October 2022, when hackers tried to carry out SIM swaps to hijack buyer accounts.
Though Verizon says it blocked the exercise and reversed unauthorized adjustments, delicate buyer info akin to partial bank card information, names, phone numbers, billing addresses, and different service-related data was uncovered.
Replace 2/6 – Added Verizon assertion
