A security breach of Movistar reveals the data of millions of customers


A security breach of Movistar reveals the data of millions of customers



FACUA considers the error as "the biggest security breach in the history of telecommunications in Spain". Telefónica has already solved the problem



Telefónica has suffered in the last hours a security breach that has left millions of billing information of its customers uncovered . The error has been located by FACUA - consumer organization - which has denounced this vulnerability of the company in a public statement.

The operator yesterday received the warning that could have a breach that left the information of its users uncovered. In a matter of hours, the company managed to solve the problem.

From Telefónica they assure that "of the analyzes carried out, up to now no fraudulent access has been detected and the events that have occurred have already been brought to the attention of all the competent authorities".

This basic programming error has exposed names, addresses, email addresses, fixed and mobile numbers and even call breakdowns. FACUA considers this error as "the biggest security breach in the history of telecommunications in Spain".

This Monday morning, the association has filed its complaint against Telefónica de España and Telefónica Móviles before the Spanish Agency for Data Protection (AEPD). Request that a sanction file be opened against the multinational.

It was Sunday when FACUA reported the security breach to Movistar officials. During the dawn, the company stopped some functions of its web to avoid that the data of its clients continued being accessible. This Monday, for example, it is not possible to access the invoices through the web as of August 2017.

«After confirming at night that the matter affected Movistar, a vulnerability was detected that allowed to access through a website of the company to data of the invoice of random clients. The corresponding measures were taken immediately and, this past dawn, the vulnerability was resolved ", explain from Telefónica.

According to the General Data Protection Regulations (RGPR), Movistar is obliged to inform its customers that it knows the security breach that has exposed its data.

The European Regulation establishes that the Member States must sanction this type of infringement with up to 20 million euros. However, the Spanish Organic Law on Protection of Personal Data contemplates a maximum fine of 600,000 euros, depending on the type of infraction.

FACUA considers the sanctions established by the Spanish regulations on data protection "absolutely ridiculous". In addition, the Government is asked to be updated to "not be proportional to the seriousness of the irregularities and the number of affected, which can reach tens of millions of users."

Comments

Post a Comment

Popular posts from this blog

Year one post roaming

Image
                               Year one post roaming What do you need to know in order not to overpay if you travel in Europe? Far is left when one stepped on Paris or Berlin and looked for places to connect to the wifi to share with friends the photos of the trip. It has been a year since the technology frontiers in Europe have fallen and now any citizen can use the mobile networks of any country in the Old Continent - including Iceland, Liechtenstein and Norway - at no extra cost. Goodbye surprises at the time of arrival of the days of rest for an excess in the bill of the mobile. A measure that, with the value of technology today, has been almost as important as the 1992 Maastricht Treaty, which gave the green light to the free movement of people in the Schengen area. Like any rule, it had a small print that it still maintains . On the ...
Read more

Keys to the new government tax that big technology does not like

Image
Keys to the new government tax that big technology does not like It is still unknown how much will be collected but the law will be processed "imminently", although some multinationals have already complained Amazon, Facebook, Google or Twitter have in common that their fundamental business is based on the sale of advertising 'online', in the intermediary activities of digital platforms or in the commercialization of data that is generated with information provided with the user. Therefore, these companies -among others- will pay in Spain the new tax on technological platforms promoted by the Montero cabinet. These are the three assumptions that the finance minister detailed as the bases on which the "imminent" rate for digital services would be based. Although he placed special emphasis on his first appearance before the Finance Committee in Congress where this newly created tax "will not affect SMEs or medium-sized companies", the...
Read more

The EU launches the first European regulation for the flight of drones

Image
The EU launches the first European regulation for the flight of drones The aim is for flights to be "safe" even when the sky is "busiest" | So far, appliances of less than 150 kg are regulated by national authorities The Council of the European Union has approved on Tuesday the first legislation that regulates drone flight in the EU in order to "make it more competitive" and introduce measures to ensure the safety of citizens. "These rules will ensure that flights are safe even when our skies are more and more traveled," said Bulgarian Transport Minister Ivaylo Moskovski, on behalf of the country that represents the Council this semester, after learning of the agreement reached in Luxembourg. It will enter into force this summer once it is published in the Official Journal of the EU. So far, drones under 150 kilos are regulated by national authorities, leaving manufacturers and operators at the expense of different design and safety requirements....
Read more