A data breach has been discovered by Croatian phone provider’ A1 Hrvatska,’ exposing the personal information of 10% of its subscribers, or around 200,000 people. The notification is brief, stating that they experienced a cybersecurity issue involving illegal access to one of their user databases, which comprised sensitive personal information.
Full names, physical addresses, personal identification numbers, and telephone numbers are among the types of information that have been accessed. A1 Hrvatska disclosed that information on bank cards or online accounts hadn’t been compromised because the accessible database did not include these details.
A computer forensics team investigates the event and analyzes the logs to identify what was taken validated this crucial component. According to the company, customers whose information was compromised in this incident will be notified immediately by A1 Hrvatska. Meanwhile, a criminal report has been filed with the Zagreb Police Department, and the incident is being investigated.
“A1 Croatia takes this embarrassing situation extremely seriously and, immediately after the first signs of suspicion of unauthorized access to the user base, immediately and without delay prevented further unauthorized access and took additional protection measures,” as per the statement.
The company clarified that A1 Croatia adheres to the strictest security and data protection regulations, and it will continue to invest in enhancing the security environment. This security event can’t happen again, and it has had and will continue to have no impact on the supply of services to consumers.
A1 Hrvatska is a crucial partner of Vodafone. Strategic partners occasionally share web infrastructure, but the link is dubious in this case, but it can’t be entirely ruled out. Because the event appears to have had no impact on A1 Hrvatska’s services or operations, it seems to be an instance of unauthorized database access, either due to a misconfiguration or stolen credentials.