FR
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Register now!

TELUS data leak includes stolen source code containing the company's "sim-swap-api".

JenniferGoheen
Good Citizen / Bon Citoyen

‎02-28-2023 05:27 PM

So late last week, there was news report of "TELUS Investigating Leak of Stolen Source Code, Employee Data".

The code leaked includes the company's "sim-swap-api".

Just wondering if the PM admins could share the risk level this may pose to customers, perhaps being vulnerable to a SIM hijack.  Thanks, Jennifer.

 

Labels:
0 Bravos
7 REPLIES 7

HALIMACS
Mayor / Maire
In response to gpixel

‎02-28-2023 07:28 PM - edited ‎02-28-2023 07:30 PM

I second your keen observation, @gpixel 

 

Jennifer, putting your real name as part of your community user name just increases the level of potential risk you may expose yourself to on a public forum.

 

Now, in fact, it may not be your real name and a pseudonym, in which case you’re fine.

 

Just an observation which seems relevant to your initial posted question.

 

Would recommend all community usernames have no semblance to one’s actual name.

gpixel
Mayor / Maire

‎02-28-2023 06:38 PM

@JenniferGoheen 

I think the customers who have the most to worry about are customers using their real names on their accounts. as for the source code being stolen it's possible that these intruders are looking for backdoors. however, that is the least of our problems and telus' is most likely downplaying the breach. if one was able to retrieve the source code what else did they get their hands on? these issues are always kept hush hush.

0 Bravos

BKNS27
Mayor / Maire
In response to XionBunny

‎02-28-2023 05:56 PM

@XionBunny 

I know, it was just a cheeky comment.😉

XionBunny
Deputy Mayor / Adjoint au Maire
In response to BKNS27

‎02-28-2023 05:52 PM

That is what the OP is referring to, has nothing to do with that union strike.

https://www.bleepingcomputer.com/news/security/telus-investigating-leak-of-stolen-source-code-employ...

BKNS27
Mayor / Maire

‎02-28-2023 05:44 PM - edited ‎02-28-2023 05:46 PM

@JenniferGoheen 

It might be related to the potential Telus Union strike in BC.


There is a good chance SIM swapping was done by talking to a Telus operator with customers yelling in their eyes. PM is all done online and the CS_Agent will review all credentials before any changes are done.

0 Bravos

hTideGnow
Mayor / Maire

‎02-28-2023 05:32 PM

Hi @JenniferGoheen 

 

If PM is ready to comment , I think they will send us email, that is how most companies handle this kind of issues 

 

of course, you can try to open ticket with them but I doubt they will share much until the official communication is ready

 

 

 

0 Bravos

Handy1
Mayor / Maire

‎02-28-2023 05:30 PM

@JenniferGoheen The culprits would need your account number and your SIM card to reply YES to the confirmation text …. So it’s pretty unlikely most of us would be a target of such scams in the first place 

0 Bravos
Copyright © 2024 Khoros, LLC
Need Help? Let's chat.