Company investigating the extent of the incident.
Telefonica has confirmed a breach of its internal systems.
According to screenshots shared by Infosecurity, attackers exfiltrated Jira database and claim to have stolen 236,493 lines of customer data, 469,724 lines of internal ticketing data and over 5000 internal PDFs, Word, PowerPoint and other documents.
“We have become aware of unauthorised access to an internal ticketing system,” Telefonica admitted in a statement. “We are currently investigating the extent of the incident and have taken the necessary steps to block any unauthorised access.”
Hudson Rock claimed to have spoken to the perpetrators, and found they used infostealer malware to compromise over 15 Telefonica employees, gaining credentials from them for initial access.
“Notably, they targeted two employees with administrative privileges, tricking them into revealing the correct server for brute-forcing SSH access. This multi-faceted approach highlights the evolving complexity of cyber-threats.”
Written by
Dan Raywood
Senior Editor
SC Media UK
Dan Raywood is a B2B journalist with more than 20 years of experience, including covering cybersecurity for the past 16 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.
He has spoken at events including 44CON, Infosecurity Europe, RANT Conference, BSides Scotland, Steelcon and ESET Security Days.
Outside work, Dan enjoys supporting Tottenham Hotspur, managing mischievous cats, and sampling craft beers.
