Three Mobile(UK) has confirmed that personal customer information of over 6 Million has been compromised in a massive data breach. Hackers have managed to break into Three UK’s network database in an attempt to steal high-end smartphones. The company noted that the attackers used an employee login to gain entry into its database.
The stolen data includes customer names, addresses, phone numbers and dates of birth, which is then used to carry out mobile phone fraud. However the company assured its customers that no payment data, including bank account numbers and card numbers, has been accessed. The investigation is ongoing, and three people have already with in connection to the fraud.
On Wednesday, the NCA arrested two men on suspicion of computer misuse allegations:
- A 48-year-old man from Orpington, Kent
- A 39-year old man from Ashton-under-Lyne, Manchester
The company explained that hackers most likely attempted to find eligible for handset upgrade, placing orders for the new phones, intercepting the parcels as they arrived, and then reselling them for a profit. Also it looks like at least 8 flagships were stolen as a result of the breach.
Three Mobile said: We’re aware of an attempted fraud issue regarding upgrade devices and are working with police and relevant authorities on the matter. The objective was to steal high-end smartphones from Three, but we’ve already put measures in place to stop the fraudulent activity.