TPG Telecom Reveals Its Legacy Cloud-based Hosting Service Has Been Compromised in a Cyberattack
The Incident Has Not Impacted Customers from Any of their Other Brands, Products, or Services.
TPG Telecom Limited has disclosed that its legacy cloud-based hosting service, TrustedCloud, was affected in a recent cyberattack, with two clients found to have their data accessed.
Only two TPG clients had their data stolen during the April cyberattack, which the enterprise observed on the same day, forcing it to take TrustedCloud offline while the issue was fixed, the telecommunications company said.
The company added that it doesn’t think any other TrustedCloud customers or services were impacted as “TrustedCloud is hosted in a standalone environment separate from its telecommunications networks and other systems. ”
Formerly known as Wavenet, TrustedCloud is a legacy IntraPower product that was obtained in 2011 by the pre-merger TPG Telecom. The organization stated the service uses legacy IT systems was in the process of being decommissioned at the time of the attack. TrustedCloud is scheduled to close at the end of August 2021 with only a few remaining customers using the TrustedCloud Service.
TPG Telecom stated:
We have introduced measures to improve the security of the TrustedCloud service.
Although we are confident this incident has not impacted our other environments, we have also increased the cybersecurity defenses across our entire business.
The telecommunication company refused to disclose whose information it was, or what type of data was exposed in the file, but a spokesperson confirmed that the file contained the entire contents of a cloud-based server one customer was renting from TPG, which means it could perhaps include passwords and financial information.
The zipped file seemed to have been downloaded 31 times from one dark site, however, we don’t know if the site’s download counter contains only completed downloads or all attempted downloads.
The TPG Telecom Limited stated it had informed and it has been working with the two affected customers and continue to provide them with information and assistance.
Also, they notified the relevant government authorities and they have engaged external cybersecurity experts to assist with the management of the incident.