Friday 27 August 2021, Poradnik bezpieczeństwa

Tauron’s customer data leak – hacker carried out the attack gives details

Lost24

The leak of customer data from Tauron, which we informed about a few days ago, has its continuation. Niebezpiecznik portal was contacted by a hacker who came into possession of the files of Tauron’s clients.


A hacker named Edison claims he was provoked to attack because he was attacked himself. Edison detected the attack from the addresses 93.105.88.X and 93.105.88.Y, and then traced the IP carefully. The script came across a server that had a directory listing of numerous files, a total of 200 GB. The files contained recordings of conversation with Tauron’s clients and entries regarding 2 million unique numbers.


The hacker, realizing what data he was dealing with, made several phone calls informing the owners of the numbers that their data was publicly available, and also contacted a Tauron employee. However, he was laughed at and called mentally ill. The hacker, wanting to force Tauron’s hand, threatened to make public information about the entire incident. Only at this point, Tauron responded and secured the hacked server.


Edison claims that the downloaded data has been deleted and that on his part there were no threats to people whose data has been leaked. However, Niebezpiecznik emphasized that this data was available on the servers without any security for almost a month. So there is a chance that someone else might have viewed and downloaded the information before the hacker.
According to the Niebezpiecznik, the data was leaked from two of Tauron’s partner companies: PROMO-ART. NS. z o.o. and TRADE OFFICE sp.z o.o., which are responsible for the choice of infrastructure and security.