NEWS BRIEF
Telefonica, the multinational telecommunications firm headquartered in Madrid, has confirmed that its inner techniques had been breached by hackers, resulting in the theft of greater than 236,000 strains of buyer knowledge and near a half-million Jira tickets.
“We have now change into conscious of unauthorized entry to an inner ticketing system,” Telefonica mentioned in an emailed assertion to media. “We’re at the moment investigating the extent of the incident and have taken the mandatory steps to dam any unauthorized entry.”
Four threat actors posted an exfiltrated Jira database on the BreachForums Darkish Internet hacking neighborhood final week, claiming that it incorporates almost 470,000 strains of inner ticketing knowledge and greater than 5,000 PDFs, Phrase paperwork, PowerPoints, and different paperwork.
Three of the 4 menace actors in query are believed to be part of the Hellcat ransomware group.
Hudson Rock, a cybersecurity vendor that claims to have spoken with the menace actors, reported that the perpetrators used infostealer malware to compromise roughly 15 Telefonica staff and acquire entry to the system by way of their credentials.
The seller says that the breach has uncovered 24,000 Telefonica worker emails and names in addition to the Jira points. The stolen paperwork additionally probably comprise different confidential info.
“The information contains summaries of inner Jira points, which might reveal delicate operational particulars, mission plans and vulnerabilities inside Telefonica’s infrastructure,” Hudson Rock warned. “This poses a major danger because it might be used to map out inner workflows and exploit weaknesses.”
Source link