Canada’s second-largest telecom company TELUS is investigating a possible data breach after a hacker shared online samples of what appeared to be employee data. The hacker then posted screenshots that apparently show private source code repositories and payroll records held by the company
TELUS has so far found no evidence of theft of corporate or retail customer data and continues to monitor the potential incident.
By Tuesday, February 21, the same hacker had created another forum post – this time offering to sell TELUS’ private GitHub repositories, source code, as well as the company’s payroll records.
The seller further boasts that the stolen source code contains the company’s “sim-swap-api” which will allegedly allow adversaries to perform SIM swapping attacks.
Although the hacker labeled it a “full breach” and promises to sell “everything related to Telus,” it’s too early to conclude that an incident at TELUS or a third-party vendor breach actually occurred.
TELUS employees and customers, meanwhile, should be wary of any phishing or scam messages directed at them, and avoid such email, text or phone messages.