- Crimson Collective has announced the alleged theft of personally identifiable information (PII) belonging to over 1 million Brightspeed customers, which includes names, emails, phone numbers, and partial payment details.
- Brightspeed has not validated these claims and is currently investigating reports of a cybersecurity incident.
- Headquartered in Charlotte, North Carolina, Brightspeed offers fiber broadband services across 20 states, reaching millions of customers.
Brightspeed, one of the major players in the U.S. fiber broadband sector, is reportedly looking into a potential data breach that impacts upwards of one million customers.
Over the past weekend, a hacking group known as Crimson Collective took to their Telegram channel to notify followers of the attack, stating:
“If anyone has someone working at Brightspeed, tell them to check their emails quickly! We have in our possession over 1 million residential user PII’s.” They indicated plans to release samples of the stolen data on Monday evening, giving the company time to respond.
According to Crimson Collective’s assertions, the compromised PII consists of names, email addresses, phone numbers, postal addresses, and user account details associated with session or user IDs. Additionally, they claimed to have obtained payment histories, partial payment card information, as well as records of appointments or orders.
Brightspeed has yet to confirm or deny these allegations. There has been no official communication from the company regarding a breach on their website or social media channels. When reached for comment, Brightspeed expressed their commitment to network security and the safeguarding of customer and employee information. A spokesperson stated, “We take the security of our networks and the protection of our customers’ and employees’ data seriously. We are currently investigating reports of a cybersecurity event and will keep our customers, employees, and authorities informed as more details emerge.”
Founded in 2022 as a result of Apollo Global Management’s acquisition of local exchange assets from Lumen Technologies, Brightspeed is headquartered in Charlotte, North Carolina. The company specializes in the development and operation of high-speed fiber broadband, traditional internet, and voice services across 20 states in the Midwest, Southeast, and Mid-Atlantic regions.
Brightspeed has aggressively expanded its fiber network, reaching over two million homes and businesses with a target of providing service to more than five million locations. This initiative aims to enhance service in an area that encompasses 7.3 million residences and businesses. The company’s annual revenue is estimated at around $1 billion, bolstered by substantial capital investments and grants.
The potential breach raises significant concerns for businesses and consumers alike. Given the nature of the attack, it could involve various MITRE ATT&CK techniques, including initial access and data theft tactics. Attackers may have exploited vulnerabilities in software systems or used social engineering techniques to gain unauthorized access to sensitive data. Understanding these attack vectors is crucial for organizations looking to shore up their cyber defenses in a landscape increasingly fraught with threat.
The incident serves as a reminder of the persistent threat posed by cybercriminals, highlighting the need for robust security measures to protect customer data and uphold trust in telecommunications services.
Via BleepingComputer
