Sprint warns that hackers obtained user data through the Samsung website

US mobile communications operator Sprint recently issued a warning that hackers have obtained user account information through via the Samsung.com “add a line” website. It is not clear how many users are affected. In a letter to the affected users, Sprint said: “On June 22, Sprint was informed of unauthorized access to your Sprint account using your account credentials via the Samsung.com ‘add a line’ website.”

“Sprint”by JeepersMedia is licensed under CC BY 2.0

Sprint said in the letter:

“The personal information of yours that may have been viewed includes the following: phone number, device type, device ID, monthly recurring charges, subscriber ID, account number, account creation date, upgrade eligibility, first and last name, billing address and add-on services.”

Sprint said that all affected accounts have been required to reset the PIN on June 25th. Sprint’s security notice lacks some very important details, such as the number of stolen users, the date the hacker first started accessing the Sprint account through Samsung.com website, and whether the hacker modified any client account details.

Via: ZDNet