Frontier fallout as 750K customers’ data exposed in RansomHub cyberattack

Frontier fallout as 750K customers’ data exposed in RansomHub cyberattack

The telecom giant confirmed massive data breach and offered freebie to make things right

by Kurt Knutsson

US telecommunications company Frontier has experienced a serious data security breach that compromised the personal information of a significant number of its customers. The company confirmed that a security incident resulted in the unauthorized disclosure of full names and Social Security Numbers (SSNs) belonging to over 750,000 individuals. Frontier is currently notifying affected customers and has reported the incident to the appropriate regulatory authorities.

GET SECURITY ALERTS, EXPERT TIPS – SIGN UP FOR KURT’S NEWSLETTER – THE CYBERGUY REPORT HERE

A person standing with a laptop

 

What happened in the Frontier data breach?

Frontier Communications is warning 750,000 customers that their information was exposed in a data breach. “On April 14, 2024, we detected unauthorized access to some of our internal IT systems. Our investigation identified your personal information among the data affected by this incident,” the telco wrote in a notification sent to affected customers.

The sample of the notice submitted to the Office of the Maine Attorney General has censored the types of data exposed in this incident. However, full names and Social Security Numbers (SSNs) were confirmed as breached for 751,895 customers, according to a Bleeping Computer report. Frontier assures that no customer financial information was exposed due to this breach.

Frontier believes it contained the data breach shortly after the attack and restored normal business operations. However, the security incident forced the company to partially shut down some systems to prevent the threat actors from laterally moving through the network, which also led to some operational disruptions.

A person typing on a laptop

 

PHARMA GIANT’S DATA BREACH EXPOSES PATIENTS’ SENSITIVE INFORMATION  

 

Who’s behind the Frontier data breach?

Frontier hasn’t disclosed the exact cause of the data breach, but it confirmed a cybercrime group was behind it. “Based on the Company’s investigation, it has determined that the third party was likely a cybercrime group, which gained access to, among other information, personally identifiable information,” the telco wrote in a filing with the US Securities and Exchange Commission.

Frontier hasn’t officially named the cybercrime group responsible for the attack. However, it’s worth noting that the RansomHub extortion group claimed responsibility for the attack earlier this month, on June 4th, raising suspicion about the timing of Frontier’s data breach notification.

RansomHub says they hacked Frontier and stole data on 2 million customers. This data reportedly includes personal info like names, addresses, birthdays, Social Security numbers, email addresses, and even details about your Frontier service. RansomHub put Frontier’s name on their dark web extortion site and gave the company a deadline to meet their ransom demands. If Frontier doesn’t respond to their demands, RansomHub says they’ll sell the stolen data to the highest bidder.

 

What is Frontier doing about the data breach?

Frontier says it responded swiftly to the cyberattack. It brought in leading cybersecurity experts to investigate and contain the breach while also fortifying its network defenses to prevent future intrusions. Law enforcement and regulators were notified.

The telecom giant is providing affected customers with free credit monitoring and identity theft resolution for one year.  While Frontier mentions a deadline to enroll, it hasn’t specified the date. Act promptly to ensure you’re covered.

We reached out to Frontier for a comment but had not heard back by our deadline.

A person sitting in front of a laptop

 

AT&T DATA LEAK FROM 73 MILLION CUSTOMERS – WHAT YOU NEED TO DO NEXT  

 

6 measures to take to protect yourself from a data breach

If you suspect you’ve been impacted by this data breach, follow these steps to protect your personal data and privacy.

1) Invest in identity theft protection: If you think your personal data has been leaked, scammers may try to impersonate you to gain access to your private information. The best thing you can do to protect yourself from this type of fraud is to subscribe to an identity theft service. If you’re eligible, take the free Kroll subscription Frontier is offering.

Identity Theft companies can monitor personal information like your Social Security Number (SSN), phone number, and email address and alert you if it is being sold on the dark web or being used to open an account.  They can also assist you in freezing your bank and credit card accounts to prevent further unauthorized use by criminals.

My top recommendation is Identity Guard. One of the best parts of using Identity Guard is that they might include identity theft insurance of up to 1 million dollars to cover losses and legal fees and a white glove fraud resolution team where a US-based case manager helps you recover any losses.

CyberGuy’s Exclusive Offer: Get the Identity Guard Ultra protection to protect your identity and credit through tax season and beyond for as little as $9.99/mo (lowest offered anywhere) for the first year. 

See my tips and best picks on how to protect yourself from identity theft.

Best identity theft protection services 2024

 

2) Place a fraud alert: Contact one of the three major credit reporting agencies (Equifax, Experian, or TransUnion) and request a fraud alert to be placed on your credit file. This will make it more difficult for identity thieves to open new accounts in your name without verification.

 

3) Be cautious of phishing attempts: Be vigilant about emails, phone calls, or messages from unknown sources asking for personal information. Avoid clicking on suspicious links or providing sensitive details unless you can verify the legitimacy of the request.

The best way to protect yourself from clicking malicious links that install malware that may get access to your private information is to have antivirus protection installed on all your devices. This can also alert you of any phishing emails or ransomware scams.

My top pick is TotalAV, and you can get a limited-time deal for CyberGuy readers: $19 your first year (80% off) for the TotalAV Antivirus Pro package.

Get my picks for the best 2024 antivirus protection winners for your Windows, Mac, Android & iOS devices.

Best Antivirus Protection 2024

4) Check Social Security benefits: It is crucial to periodically check your Social Security benefits to ensure they have not been tampered with or altered in any way, safeguarding your financial security and preventing potential fraud.

 

5) Invest in removal services: While no service promises to remove all your data from the internet, having a removal service is great if you want to constantly monitor and automate the process of removing your information from hundreds of sites continuously over a longer period of time.

A service like Incogni can help you remove all this personal information from the internet. It has a very clean interface and will scan 195 websites for your information and remove it and keep it removed.

Special for CyberGuy Readers (60% off):  Incogni offers A 30-day money-back guarantee and then charges a special CyberGuy discount only through the links in this article of $6.49/month for one person (billed annually) or $13.19/month for your family (up to 4 people) on their annual plan and get a fully automated data removal service, including recurring removal from 175+ data brokers.  I recommend the family plan because it works out to only $4.12 per person per month for year-round coverage. It’s an excellent service, and I highly recommend at least trying it out to see what it’s all about.

Get Incogni here

 

6) Change your password: You can render a stolen password useless to thieves simply by changing it. Opt for a strong password—one you don’t use elsewhere. Even better, consider letting a password manager generate one for you.

 

TICKETMASTER DATA BREACH EXPOSES 560 MILLION CUSTOMERS’ DATA SAYS IT GROUP  

 

Kurt’s key takeaway

Frontier says it is fortifying its systems to prevent the incident from happening again. While I appreciate the company’s steps to make things right, this incident shouldn’t have occurred in the first place, especially if customers are entrusting it with sensitive information. Frequent data breaches suggest a worrying gap in cybersecurity preparedness among large tech companies. You, as customers, must stay aware when sharing sensitive information and avoid any phishing attempts from scammers.

How important is online privacy to you? Have recent data breaches impacted your online behavior? Let us know in the comments below.

FOR MORE OF MY SECURITY ALERTS, SUBSCRIBE TO MY FREE CYBERGUY REPORT NEWSLETTER HERE

 

 

Copyright 2024 CyberGuy.com.  All rights reserved.  CyberGuy.com articles and content may contain affiliate links that earn a commission when purchases are made.


   

Leave a Comment

GET MY FREE CYBERGUY REPORT
Subscribe to receive my latest Tech news, security alerts, tips and deals newsletter. (We won't spam or share your email with anyone else.)

By signing up, you agree to our Terms of Service and Privacy Policy. You may unsubscribe at any time.

Tips to avoid our newsletters going to your junk folder