Syniverse Routes SMS Text Messages Service for Major Mobile Carriers
Note: We may earn a commission from products or services when you click on a link and make a purchase.
Telecommunication provider, Syniverse Corporation, has disclosed a data breach to the US Securities and Exchange Commission (SEC). In the notice to regulators, the company says that the breach went on for five years undetected.
Syniverse provides SMS Text message service for almost every major mobile provider including AT&T, T-Mobile, Verizon, Vodafone, China Mobile as well as others.
In the September 27 filing with the SEC, Syniverse says that “approximately” 235 of its 300 customers are impacted by the breach.
“For example, in May 2021, Syniverse became aware of unauthorized access to its operational and information technology systems by an unknown individual or organization (the “May 2021 Incident”) says the SEC filing.
The breach began in May 2016. The attackers gained access to corporate databases on multiple occasions. Login information allowing access to or from its Electronic Data Transfer (EDT) environment was compromised.
All EDT customers have since been notified.
“While Syniverse believes it has identified and adequately remediated the vulnerabilities that led to the incidents described above, there can be no guarantee that Syniverse will not uncover evidence of exfiltration or misuse of its data or IT systems from the May 2021 Incident, or that it will not experience a future cyber-attack leading to such consequences.”
Customer Text Messages May Have Been Exposed
According to its corporate website, Syniverse is a communications provider that delivers over 740 billion messages every year.
“Any such exfiltration could lead to the public disclosure or misappropriation of customer data, Syniverse’s trade secrets or other intellectual property, personal information of its employees, sensitive information of its customers, suppliers, and vendors, or material financial and other information related to its business.”