{"id":35279,"date":"2025-02-27T10:44:51","date_gmt":"2025-02-27T10:44:51","guid":{"rendered":"https:\/\/247stiri.ro\/index.php\/2025\/02\/27\/bresa-de-securitate-la-cea-mai-mare-companie-de-telefonie-din-romania-au-fost-furate-date-despre-clienti-si-angajati\/"},"modified":"2025-02-27T10:44:51","modified_gmt":"2025-02-27T10:44:51","slug":"bresa-de-securitate-la-cea-mai-mare-companie-de-telefonie-din-romania-au-fost-furate-date-despre-clienti-si-angajati","status":"publish","type":"post","link":"https:\/\/247stiri.ro\/index.php\/2025\/02\/27\/bresa-de-securitate-la-cea-mai-mare-companie-de-telefonie-din-romania-au-fost-furate-date-despre-clienti-si-angajati\/","title":{"rendered":"Bre\u0219\u0103 de securitate la cea mai mare companie de telefonie din Rom\u00e2nia. Au fost furate date despre clien\u021bi \u0219i angaja\u021bi"},"content":{"rendered":"<p>Atacul a fost revendicat de un hacker cunoscut sub pseudonimul\u00a0Rey, afiliat grupului de ransomware\u00a0<a href=\"https:\/\/www.catonetworks.com\/blog\/unmasking-hellcat-not-your-average-ransomware-gang\/\" target=\"_blank\">HellCat<\/a>. Acesta sus\u021bine c\u0103 a avut acces la sistemele companiei timp de peste o lun\u0103 \u0219i a exfiltrat date timp de trei ore f\u0103r\u0103 a fi detectat.<\/p>\n<p>Printre datele furate se num\u0103r\u0103 380.000 de adrese de e-mail, numere de telefon, facturi, contracte \u0219i chiar cod surs\u0103.\u00a0Mai grav, au fost expuse detalii par\u021biale despre cardurile bancare ale clien\u021bilor Orange Rom\u00e2nia, precum ultimele patru cifre, tipul cardului, data expir\u0103rii \u0219i banca emitent\u0103. De asemenea, hackerul a accesat conturi de e-mail apar\u021bin\u00e2nd unor fo\u0219ti angaja\u021bi \u0219i parteneri, unele fiind vechi de peste cinci ani.\u00a0Utilizatorii Yoxo, serviciul Orange f\u0103r\u0103 perioad\u0103 contractual\u0103, se num\u0103r\u0103 printre cei afecta\u021bi.<\/p>\n<p>Cum a fost posibil atacul?<\/p>\n<p>Hackerul\u00a0Rey\u00a0sus\u021bine c\u0103 a p\u0103truns \u00een infrastructura\u00a0Orange Rom\u00e2nia\u00a0exploat\u00e2nd acredit\u0103ri compromise \u0219i vulnerabilit\u0103\u021bi din\u00a0<a href=\"https:\/\/www.atlassian.com\/software\/jira\" target=\"_blank\">Jira<\/a>, un software utilizat pentru managementul erorilor \u0219i al proceselor interne. Dup\u0103 ce a extras datele, a \u00eencercat s\u0103 \u0219antajeze compania, \u00eens\u0103 Orange nu a ini\u021biat negocieri. \u00cen final, informa\u021biile sustrase au fost publicate pe un forum popular de hacking.<\/p>\n<p>Orange confirm\u0103 atacul<\/p>\n<p>Orange a confirmat incidentul pentru publica\u021bia\u00a0<a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/orange-group-confirms-breach-after-hacker-leaks-company-documents\/\" target=\"_blank\">BleepingComputer<\/a>, preciz\u00e2nd c\u0103 bre\u0219a a avut loc \u00eentr-o aplica\u021bie non-critic\u0103 de back-office \u0219i c\u0103 opera\u021biunile clien\u021bilor nu au fost afectate.\u00a0\u201eOrange poate confirma c\u0103 opera\u021biunile noastre din Rom\u00e2nia au fost \u021binta unui atac cibernetic. Am luat m\u0103suri imediate, iar prioritatea noastr\u0103 r\u0103m\u00e2ne protejarea datelor \u0219i intereselor angaja\u021bilor, clien\u021bilor \u0219i partenerilor no\u0219tri\u201d, a transmis compania.<\/p>\n<p>\u00cen prezent, echipele de securitate cibernetic\u0103 \u0219i IT ale Orange investigheaz\u0103 incidentul \u0219i iau m\u0103suri pentru a limita impactul asupra utilizatorilor.<\/p>\n<p>Ce riscuri exist\u0103 pentru clien\u021bi?<\/p>\n<p>De\u0219i Orange sus\u021bine c\u0103 serviciile clien\u021bilor nu au fost afectate, expunerea unor date personale ridic\u0103 riscuri semnificative de\u00a0phishing\u00a0\u0219i fraud\u0103. DNSC (Directoratul Na\u021bional de Securitate Cibernetic\u0103) avertiza \u00eenc\u0103 de acum doi ani asupra unor tentative de fraud\u0103 \u00een care atacatorii foloseau identitatea Orange pentru a ob\u021bine informa\u021bii financiare de la utilizatori.<\/p>","protected":false},"excerpt":{"rendered":"<p>Atacul a fost revendicat de un hacker cunoscut sub pseudonimul\u00a0Rey, afiliat grupului de ransomware\u00a0HellCat. Acesta&hellip;<\/p>\n","protected":false},"author":0,"featured_media":35280,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[],"class_list":["post-35279","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-actual"],"_links":{"self":[{"href":"https:\/\/247stiri.ro\/index.php\/wp-json\/wp\/v2\/posts\/35279","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/247stiri.ro\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/247stiri.ro\/index.php\/wp-json\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"https:\/\/247stiri.ro\/index.php\/wp-json\/wp\/v2\/comments?post=35279"}],"version-history":[{"count":0,"href":"https:\/\/247stiri.ro\/index.php\/wp-json\/wp\/v2\/posts\/35279\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/247stiri.ro\/index.php\/wp-json\/wp\/v2\/media\/35280"}],"wp:attachment":[{"href":"https:\/\/247stiri.ro\/index.php\/wp-json\/wp\/v2\/media?parent=35279"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/247stiri.ro\/index.php\/wp-json\/wp\/v2\/categories?post=35279"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/247stiri.ro\/index.php\/wp-json\/wp\/v2\/tags?post=35279"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}