Phone fraudsters breached more than 133,000 customer accounts in handset upgrade fraud and theft
UK mobile network Three this week revealed a data breach that compromised more than 133,000 user accounts. No banking or other financial information was accessed, although the accounts did hold information such as the customer’s job or marital status.
The network provider claimed that 8 of its customers have received “unlawful” upgrades to devices and that a total of 133,827 accounts were accessed.
Dave Dyson, Three’s Chief Executive, said:
“We believe the primary purpose of this was not to steal customer information but was criminal activity to acquire new handsets fraudulently.
Once we became aware of the suspicious activity, we took immediate steps to block it and add additional layers of security to the system while we investigated the issue.”
Mr. Dyson has apologised to Three customers and said that the company would be contacting all of the customer’s affected by the breach.
Earlier this week, the UK’s National Crime Agency confirmed that three men were arrested in connection with the data breach. All three have been released on bail pending further enquiries.
Data breaches similar to the one suffered by Three appear to be happening with increasing regularity. What more do you think companies can do to protect their user’s sensitive data? Is there a way to completely secure a company’s customer information? Do the repeated breaches reported in the media make you worry about how companies secure your information? Let us know in the Comments below!