A Threat Actor is selling a Database of the Italian mobile service provider ho. (http://ho-mobile.it) owned by @VodafoneIT

[Lii]

Summary

The dump allegedly includes 2,500,000 customers' PII Data, Phone Numbers & ICCID that can be exploited for SIM swap attacks to empty Bank accounts;

 

Here an example of the stolen data: - email - fiscal Code - phone Number - sim Iccid - address - city Here the full list: https://pastebin.com/PPdr45Y1

 

 

Quotes

Quote

 The dump allegedly includes 2,500,000 customers' PII Data, Phone Numbers & ICCID that can be exploited for SIM swap attacks to empty Bank accounts;

 

Here an example of the stolen data: - email - fiscal Code - phone Number - sim Iccid - address - city Here the full list: https://pastebin.com/PPdr45Y1

 

My thoughts 

By a quick search, I wasn't able to find the forum, even thought I think that I've already seen the design of it, but it doesn't really matter since they are all alike;

and also I need to change isp (the internet sucks too);

futhermore all of those leaks (if they are proved to be trusty), risk to become public, it usually takes a couple of weeks after the sale of it.. so..

 

Sources

https://twitter.com/Bank_Security/status/1343646616490815493?s=20

[Senzelian]

F*ck Vodafone. 
That's all I'm going to say.

[suicidalfranco]

Vodafone the worst mobile carrier I've ever dealt with.

Pure crooks

[12HD]

Damn, that sucks balls...

[Dabombinable]

1 hour ago, suicidalfranco said:

Vodafone the worst mobile carrier I've ever dealt with.

Pure crooks

And they are still better than our main ISP Telstra...

[AndreiArgeanu]

While ho. mobile is a subsidiary of Vodafone that doesn't mean that they're the same. ho. mobile is owned by and uses Vodafone's infrastructure to provide their own service, but they operate independently to each other as separate carriers in the same country similarly to how Voxi operates under Vodafone in UK but works as a separate carrier so I can't just go to a Vodafone store and ask them for help with my Voxi account, or for that matter make one. Say fuck Vodafone all you want but they're not the issue here to my knowledge since a ho. mobile account database is being sold and not a Vodafone one, it's pretty clear that they do not share the same type or level of security, or the databases run separately to one another and someone working at VEI dumped these 2.5 million accounts.

[Bombastinator]

Ho mobile huh? Would a stationary ho be a cathouse? 

[Rafy]

I remember I came real close to getting a ho. mobile SIM but ended up with Vodafone proper in the end. I guess discount prices also mean discount security measures. Do we know if Vodafone proper users have been affected?