The operator owned by Grupo MásMóvil, Yoigo, has confirmed to its customers that they have suffered a cyberattack that has compromised customer data: personal information and possibly banking information involved.
Specific Yoigo has suffered a cyberattack from malicious actors and it is unknown if it was a ransomware attack or if some external actor had access to the database of its clients.
Yoigo is notifying its customers by email, so you should check your inbox if you are a customer to find out more about the scope of the cyber attack.
They talk about personal data, so the hackers would have accessed names, surnames and possibly ID, telephone number and email.
From the telecom it is said that they have reinforced security and that from now on they will include new layers of security when carrying out procedures.
They also urge users to take extreme precautions and even contact the security forces or their bank if they suffer phishing or similar attacks, so it is not ruled out that even bank information has been exposed.
The complete statement sent by Yoigo to its clients
As you probably know, cyber attacks on companies to obtain the private information of their customers are becoming more frequent. For this reason, we have important security measures in place to provide you with our services in the safest way possible, protecting our systems and your data.
Even so, we must contact you to inform you that we have experienced an incident, due to which third parties outside our organization may have accessed some of your personal data that we process as a Yoigo client.
The main objective of these data thefts are usually identity theft attempts, so we inform you that we have taken the following measures:
– We have reinforced technical security measures to prevent this incident from happening again.
– We have modified the security information that we request in several processes so that criminals cannot access with the stolen information.
– We are monitoring all our processes to be able to detect anomalies in the management of the lines and the contracting of new services.
Perhaps in the next few days, if you need to do something with us, you will detect that we are a little more insistent or that we ask you for some additional verification to make sure that it is really you. Please, be patient and do not take it too seriously, because we take these measures for your safety.
In addition, in general, we recommend that you take special care with emails, SMS or calls that you may receive from unknown senders or those that are not clearly identifiable, especially if they request codes, access codes or credit card information.
If you detect any suspicious activity, we recommend that you contact your bank and report the incident to the police. You can also contact the National Institute of Cybersecurity (INCIBE) at number 017 or consult its website www.incibe.es/ciberproteaete.