Telus Corporation, the second largest telecommunication company in Canada, investigates a potential leakage of data after the attacker shared at one of the darkn forums, from his words, data from the company’s employees. Subsequently, the cybercriminal published screenshots, which, apparently, showed private storage facilities of the source code and data on wages stored in the company.
On February 17, the attacker published the first message on the forum, in which he stated the following: “Telus employees suffered from a recent leak. We have more than 76 thousand unique emails, and, in addition, we have internal information related to each employee obtained from Telus API “.
Although it is not yet possible to confirm the application of the attacker, in a small set of data posted by the seller, there are real names and email addresses corresponding to the current employees Telus.
A little later, on February 21, the same cybercriminal created another message on the same forum – this time with a proposal to sell private Telus repositories on GitHub: source code, as well as data on the company’s salary. GITHUB-REASONITIONS, for example, the seller estimated at 50 thousand US dollars.
Message on the forum with a proposal for sales of data Telus
“In the repositories there are backend, front -end, intermediate software, AWS keys, Google authentication keys, source code, test applications and much more!” – says the seller’s message.
The seller also boasts that the stolen source code contains the SIM Swap API company, which will allegedly allow attackers to independently conduct SIM Swapping attacks.
Although the cybercriminal called this incident a complete drain of the data and promises to sell everything related to Telus, it is too early to conclude that the incident really occurred in Telus, or exclude violation by a third -party supplier.
“We will investigate the statements that a small amount of data related to the internal source code of Telus and information about the members of our team appeared in the Darknet. We can confirm that at the moment the investigation that we started as soon as we know The incident did not reveal any data on corporate or retail customers, ”said one of the representatives of Telus.
If the company still does not agree on something, its employees and customers can really be vulnerable to phishing and other fraudulent attacks.