Croatian phone carrier A1 Hrvatska discloses data breach

Croatian phone carrier A1 Hrvatska has disclosed a data breach that has impacted roughly 200,000 customers.

Croatian phone carrier A1 Hrvatska has disclosed a data breach that has impacted 10% of its customers, roughly 200,000 people.

Threat actors had access to sensitive personal information of the customers, including names, personal identification numbers, physical addresses, and telephone numbers. Threat actors did not access online accounts and financial information was not exposed. At this time the phone carrier did not disclose details about the security breach.

“Unfortunately, despite advanced protection measures and the constant raising of the level of security, a security incident occurred related to one of the user databases, which compromised part of the personal data of part A1 of users. Intensive work is being done to establish all the facts related to the security incident, and so far computer forensics has determined that potentially compromised data are less than 10 percent of A1 users.” reads the data breach notification published by the company. “The data on display are name and surname, address, OIB and telephone number. We emphasize that information on bank cards and accounts is not compromised because it is not available in the specified database . We will directly inform all users whose personal data is potentially compromised.”

The company hired a computer forensics team to help the investigation and is notifying law enforcement and impacted customers.

“A1 Croatia takes this embarrassing situation extremely seriously and, immediately after the first signs of suspicion of unauthorized access to the user base, immediately and without delay prevented further unauthorized access and took additional protection measures,” continues the notification. “A1 Croatia adheres to the highest security standards and data protection, and we will continue to make additional investments in improving the security environment. The recurrence of this security incident is not possible and has not had and will not affect the provision of services to customers.”

The security breach did not impact the service and operations at A1 Hrvatska.

This week, another mobile carrier was hit by a severe cyber attack. Vodafone Portugal suffered a major cyberattack that caused service outages in the country, the media reported the temporary disruption of 4G/5G communications and television services.

Follow me on Twitter: @securityaffairs and Facebook

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, A1 Hrvatska)

[adrotate banner=”5″]

[adrotate banner=”13″]

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.