Currently, nothing escapes criminals’ desire to attack organizations’ data, often with the aim of extorting money. This time, Endesa Spain is in the crosshairs of hackers, as it has put information about its customers up for sale online… to anyone who wants to pay for it!
The beginnings appeared in a forum where vulnerabilities are disclosed, BreachForums. There, a user called "Shadowman1919“He posted what appears to be a small snippet of information stolen from Endesa. Currently, it is only accessible through payment, and everything indicates that the thousands of users registered with Endesa are vulnerable to selling their private information to the highest bidder.
Not knowing whether this data is coming only from customers in Spain or not, from today on, if you have a contract with Endesa in your home, do not answer any type of calls or messages related to the electricity supply in your home. everyone Indicates that this information They will be sold to phishing practices.
Basically, phishing is done online or over the phone. They take advantage of all the information you have about you, try to take advantage of access to that information, and try to extract money from you.
In this case, you can expect possible threats to cut off the electricity supply to your home, allegedly for non-payment. It is also possible that other operators will start contacting you, knowing in advance your consumption and what you might pay.
Endesa hacked. What personal data was stolen in the hack?
Although they partially censored the above image, the information leaked was pretty impressive. First of all, the number Glasses (In Portugal it is CUI or Universal Installation Code). That is, it is him A unique code that identifies the location of the power supply. Basically, it allows us to specify our electricity meter/supply. Using it, you can even see the less time spent (when you are not at home).
The name and surname of the person with whom the contract was signed are filtered out. His identity number, the full address of the house that is supplied with electricity, and even his phone number were also revealed. In other words, the perfect ground for a wave of fraudulent calls or SMS to try to defraud all these users.
Reportedly, 1,840 lines were the subject of the information leak. Each line includes a client who has all this information leaked. like him, At least 1,840 Endesa Spain users saw their personal information offered for sale.
Fortunately, there is more important information, such as: The bank account from which the payment was directly deducted does not appear to be reflected in this data. No type of username or password is indicated to enter the site, but it is possible to access an invoice, and through it, access to the current account number for each user.
This information is provided free of charge by "sombraman1919". At the present time, according to the information, the targeted company has not yet made any statement about the virtual data stolen from its customers.
“Writer. Analyst. Avid travel maven. Devoted twitter guru. Unapologetic pop culture expert. General zombie enthusiast.”
