Basic network security still eludes mobile operators
January 23, 2023
News thatT-Mobilein the US has allowed the personal details of 37 million of its customers to be hacked is worrying in itself. But the seemingly laid-back attitude in response to the hack from the company is perhaps more concerning, argues business technology journalistAntony Savvas.
The firm revealed last Thursday that it was investigating the data breach, after first identifying malicious activity on 5 January. It noticed a “bad actor” had obtained data through a single API (application programming interface) without authorisation.
“Current practices of fragmenting sensitive customer data within databases, data warehouses, spreadsheets and applications is forcing them to engage in the practice of widespread and unrestricted copying through a process known as ‘data integration’, he says. “The result of this is that it exponentially increases the attack surface for bad actors to exploit.”– Dan DeMers