Slashdot Mirror

← Back to Stories (view on slashdot.org)

AT&T Crack Part of a Phishing Operation

Posted by ryuzaki0 on from the crafty-crackers dept.

JohnGrahamCumming writes "According to a story in the San Francisco Chronicle the AT&T store crack was the prelude to a very sophisticated phishing operation. The phishers were aiming to use the information from the store to fool existing customers into divulging SSNs and other personal information." From the article: "'The information that was provided by customers who ordered DSL-related equipment included name, address, e-mail address, phone number, credit card number and credit card expiration,' the memo says, adding that the hacked data didn't include Social Security numbers or birth dates. But the hackers had a scheme to get this extra info. After accessing the customer data, they incorporated it into phishing messages that were promptly sent to AT&T's DSL customers ... Each message included a legitimate order number culled from the AT&T vendor's database to create an illusion of authenticity. Messages also included the recipient's home address and the last four digits of his or her credit card number. "

3 of 96 comments (clear)

  1. Re:Privacy violations rampant by Gill+Bates · · Score: 5, Funny

    I have to say that I would never give any info to anyone who called me uncolicitated.

    I would never call you uncolicitated. Now, can I have your information?

  2. No need for phishing... by Bromskloss · · Score: 2, Funny

    ...when you're using AT&T!

    --
    Swedish plasma phys. PhD student; MSc EE; knows maths, programming, electronics; finance interest; seeks opportunities
  3. Re:SSN is needed for credit checking by Anonymous Coward · · Score: 1, Funny

    To activate this service simply send your card number, card expiration, home address, birth date and social security number to BoA@bankofamrica.com