On Monday, Canadian telecommunications provider Bell confirmed that the firm had been hit by an unknown hacker who managed to access its customer information illegally.
In a brief statement, the company said that an unknown hacker managed to get his hands on data of millions of Bell customers.
However, the telecommunications firm did not specify the service from which the compromised customer details were stolen.
The company said email addresses, names and telephone numbers of its customers had been accessed in the breach. Bell confirmed the hack and said that the unknown hacker managed to gain access to information on nearly 2 million customers.
“The illegally accessed information contains approximately 1.9 million active email addresses and approximately 1,700 names and active phone numbers,” the company said.
However, Bell assured its customers that there’s no indication of hacker’s access to “financial, password or other sensitive personal information,” and that the incident is not linked to the global WannaCry ransomware attacks.
The incident seems to be an extortion attempt by a hacker(s) who posted some of the stolen customer data online and threatened to leak more if the company fails to cooperate.
While Bell Canada believes there is “minimal risk involved for those affected” by the attack, having access to customer information, including email addresses, names and/or telephone numbers, opens the opportunity for targeted phishing attacks to customers.
It is therefore only rational to be on the alert for any phishing emails, which are usually cyber criminal’s next step following a data breach so as to trick users into giving up further details like financial information.
For the obvious reasons, all Bell Canada customers are highly recommended to change their passwords as soon as possible.