1.5 Million Verizon Customer Records Put Up For Sale

An anonymous reader writes: A customer database as well as information about Verizon security flaws were reportedly put up for sale by criminals this week after a data breach at Verizon Enterprise Solutions. According to KrebsOnSecurity, "a prominent member of a closely guarded underground cybercrime forum posted a new thread advertising the sale of a database containing the contact information on some 1.5 million customers of Verizon Enterprise." The entire database was priced at $100,000, or $10,000 for each set of 100,000 customer records. "Buyers also were offered the option to purchase information about security vulnerabilities in Verizon's Web site," security journalist Brian Krebs reported. Verizon has apparently fixed the security flaws and has reassured its customers by saying "our investigation to date found an attacker obtained basic contact information on a number of our enterprise customers" and that "no customer proprietary network information (CPNI) or other data was accessed or accessible."

Re:the new reality

[Locke2005]

Phone companies just don't care. My ex went into T-Mobile and walked out with $406 worth of equipment, charging the whole thing to an equipment purchase installment plan. The only problem is, she gave them my phone number, and they charged it to my account! She even gave them her Oregon Driver's license so they didn't charge her sales tax, but at no point did the friendly salesperson think to check that the name, address, and phone number listed at the top of the contract actually matched the name of the person that signed it! (They took it off my account and charged it to hers instead only when I complained in person.)