Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cybercrime

Rogers Says Hackers Accessed Small Number of Business Accounts

A hacker group called TeamHans has leaked hundreds of megabytes of data allegedly stolen from the systems of Canadian communications and media company Rogers.

A hacker group called TeamHans has leaked hundreds of megabytes of data allegedly stolen from the systems of Canadian communications and media company Rogers.

According to DataBreaches.net, the attackers leaked sensitive corporate information such as contracts, emails, documents, and even VPN data. TeamHans said it gained access to the information on February 20 after tricking support staff into changing the password for an employee’s email account.

The information found in the targeted employee’s email account led TeamHans to an online tool used by Rogers to manage contracts.

The attackers attempted to blackmail Rogers and asked the company to pay 70 Bitcoins in exchange for not leaking the stolen information.

Contacted by SecurityWeek, Rogers said the attackers gained access to a single email account belonging to an enterprise sales employee.

“A single email address of one of our enterprise sales employees, who managed a small number of medium business accounts, was accessed last week by a third party due to human error. The third party was able to access a small number of business agreements managed by this employee,” Rogers said in an emailed statement.

The agreements accessed by the hackers included business names, business addresses, business phone numbers and pricing details. However, they didn’t contain personal or financial information. The attackers haven’t accessed consumer accounts, Rogers said. 

“As soon as we discovered the situation we took all the necessary steps to secure our systems. We are working with the police and we have been contacting affected business customers,” the company noted. “As a precaution, we’ve put additional security procedures in place for our business customers. We take the privacy and security of our customers’ information very seriously and we will continue to review our policies and procedures.”

Advertisement. Scroll to continue reading.

This isn’t the first time Rogers employees have fallen victim to social engineering. In March 2014, Canadian Bitcoins accused Rogers staff of facilitating a data breach that resulted in the theft of $100,000 worth of Bitcoins.

Written By

Eduard Kovacs (@EduardKovacs) is a managing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Discover strategies for vendor selection, integration to minimize redundancies, and maximizing ROI from your cybersecurity investments. Gain actionable insights to ensure your stack is ready for tomorrow’s challenges.

Register

Dive into critical topics such as incident response, threat intelligence, and attack surface management. Learn how to align cyber resilience plans with business objectives to reduce potential impacts and secure your organization in an ever-evolving threat landscape.

Register

People on the Move

Karl Triebes has joined Ivanti as Chief Product Officer.

Steven Hernandez has joined USAID as CISO and Deputy CIO.

Data security and privacy firm Protegrity has named Michael Howard as its CEO.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.