Croatian phone carrier A1 Hrvatska discloses data breach

Croatian phone carrier A1 Hrvatska has disclosed a data breach that has impacted roughly 200,000 customers.

Croatian phone carrier A1 Hrvatska has disclosed a data breach that has impacted 10% of its customers, roughly 200,000 people.

Threat actors had access to sensitive personal information of the customers, including names, personal identification numbers, physical addresses, and telephone numbers. Threat actors did not access online accounts and financial information was not exposed. At this time the phone carrier did not disclose details about the security breach.

“Unfortunately, despite advanced protection measures and the constant raising of the level of security, a security incident occurred related to one of the user databases, which compromised part of the personal data of part A1 of users. Intensive work is being done to establish all the facts related to the security incident, and so far computer forensics has determined that potentially compromised data are less than 10 percent of A1 users.” reads the data breach notification published by the company. “The data on display are name and surname, address, OIB and telephone number. We emphasize that information on bank cards and accounts is not compromised because it is not available in the specified database . We will directly inform all users whose personal data is potentially compromised.” 

The company hired a computer forensics team to help the investigation and is notifying law enforcement and impacted customers.

“A1 Croatia takes this embarrassing situation extremely seriously and, immediately after the first signs of suspicion of unauthorized access to the user base, immediately and without delay prevented further unauthorized access and took additional protection measures,” continues the notification. “A1 Croatia adheres to the highest security standards and data protection, and we will continue to make additional investments in improving the security environment. The recurrence of this security incident is not possible and has not had and will not affect the provision of services to customers.” 

The security breach did not impact the service and operations at A1 Hrvatska.

This week, another mobile carrier was hit by a severe cyber attack. Vodafone Portugal suffered a major cyberattack that caused service outages in the country, the media reported the temporary disruption of 4G/5G communications and television services.

Follow me on Twitter: @securityaffairs and Facebook

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, A1 Hrvatska)

[adrotate banner=”5″]

[adrotate banner=”13″]