Hackers have stolen the contact information of a number of Verizon Communications’ enterprise customers, according to the U.S. broadband and telecommunications giant, which blamed the theft on a security “vulnerability.”
In a statement Thursday, the New York-based company said its Verizon Enterprise Solutions unit was the target of the breach and that it was notifying affected customers.
The vulnerability has already been corrected, according to Verizon, which said the hackers only stole contact information and did not gain access to so-called Customer Proprietary Network Information, which includes phone calls’ duration and destination number.
The company did not indicate the number of clients affected, but Brian Krebs, a journalist and blogger who specializes in cybersecurity issues, said a member of an underground cybercrime forum had advertised the sale of a database containing the contact information of roughly 1.5 million Verizon Enterprise customers.
The seller was seeking $100,000 for all of the contact information but also was offering to sell chunks of 100,000 records for $10,000 each, Krebs wrote on his blog.