Sprint says hackers breached customer accounts via Samsung website

US mobile network operator Sprint said hackers broke into an unknown number of customer accounts via the Samsung.com “add a line” website.

“On June 22, Sprint was informed of unauthorized access to your Sprint account using your account credentials via the Samsung.com ‘add a line’ website,” Sprint said in a letter it is sending impacted customers.

“The personal information of yours that may have been viewed includes the following: phone number, device type, device ID, monthly recurring charges, subscriber ID, account number, account creation date, upgrade eligibility, first and last name, billing address and add-on services,” the US telco said.

Sprint said the information hackers had access to did not pose “a substantial risk of fraud or identity theft,” although, many might disagree with its assessment.

The company said it re-secured all compromised accounts by resetting PIN codes, three days later, on June 25.


The Sprint account breach notification lacks a few important details, such as the number of breached accounts, the date when hackers first started accessing Sprint accounts via the Samsung.com website, and if hackers modified any customer account details.

ZDNet reached out to Sprint with all these questions, along with an inquiry of how Sprint discovered the breach in the first place. A spokesperson did not respond in time for this article’s publication.

Make it easy with SolarWinds® Network Configuration Manager (NCM). Plus take the stress out of recovering from a failed device or bad configuration change by not being the last to know about a bad network config change. Download a free trial of SolarWinds Network Configuration Manager today.Downloads provided by SolarWinds

This is the second account breach notification letter Sprint is sending this year. The company also suffered another breach via Boost Mobile, a virtual mobile network and Sprint subsidiary.

In May, Sprint said hackers used Boost phone numbers and Boost.com PIN codes to access users’ Sprint accounts.

Original Post: https://www.zdnet.com/article/sprint-says-hackers-breached-customer-accounts-via-samsung-website/

For more cybersecurity news and insights click here: https://ascensiongt.com/cybersecurity-news-and-insights/

Related Posts

Leave a Reply

About Us

"AGT" offers complete end-to-end security protection through technology tools, cybersecurity strategy, consulting, and project management services. From addressing specific security gaps to a full environment cybersecurity strategy. With services designed to improve any organization’s overall organizational security posture, AGT develops strategies to implement and deploy successful cybersecurity solutions to protect companies from data and financial loss.