Another Data Exposure Uncovered at Verizon

Print Email

It came to light on Friday that Security researchers had discovered another data exposure at Verizon Communications Inc. (NYSE: VZ). Security researchers at Kromtech Security Research center found the exposure in an unprotected Amazon S3 storage server controlled by a Verizon Wireless customer.

This marks the third known exposure of data within the past two years. The first precipitated the theft of roughly 1.5 million records at Verizon Enterprise Solutions, and the second was found several weeks ago as the result of a similar Amazon server misconfiguration. Up to 14 million subscribers were allegedly affected in the second incident.

According to the report, there were confidential and sensitive documents on the server, which are said to include server logs and several instances of creditials for internal systems. However the employee who ran the server claimed to ZDNet that the files were ‘not confidential,’ and that Verizon was aware of this server’s existence. Currently the server is no longer accessible.

While it was reported that there was no customer data involved, the information still could be useful for hackers for a better understanding of the layout of the firm’s systems.

ZDNet further explored the contents in its report:

Other folders contained internal Verizon documents, many of which were marked “confidential and proprietary materials,” include detailed server and infrastructure maps, server IP addresses, global router hosts, and several scripts that could be used to gain elevated privileges within the system.

Shares of Verizon were up about 2% at $49.94, with a consensus analyst price target of $49.59 and a 52-week range of $42.80 to $54.83.