The Lyca Mobile Services has confirmed a data breach attack on its systems. The international mobile virtual network operator (MVNO) based in the UK has fallen victim to a cyber-attack by an unknown threat actor.
The Lyca Mobile cyber attack resulted in widespread service disruption for millions of its customers. The attack has also impacted all markets serviced by Lyca Mobile, except the United States, Australia, Ukraine, and Tunisia.
Lyca Mobile Cyber Attack Confirmed
The Lyca Mobile data breach, which commenced late last week, primarily hindered customers and retailers from accessing top-up services and also affected national and international calling capabilities.
In response to the Lyca Mobile cyber attack, the company swiftly took action to restore telecommunications services across all affected markets. One of the critical concerns surrounding this cyber attack is the potential compromise of personal information.
Lyca Mobile is currently conducting a thorough investigation in collaboration with expert partners to ascertain the facts. The company asserts that all its records are fully encrypted, providing a measure of security for its customers.
Although Lyca Mobile has not disclosed specific details about the attack, there are indications that ransomware may have played a role based on the initial description provided.
Response to the Lyca Mobile Data Breach
While the investigation is still in its early stages, Lyca Mobile’s encryption measures offer hope that customer data has not been compromised.
The company’s commitment to transparency is evident in its pledge to keep customers updated on the progress of the investigation. Moreover, the Information Commissioner’s Office (ICO) has not received a Lyca Mobile breach report from Lyca Mobile.
In an unusual move, Lyca Mobile’s statement on its website includes a “noindex” code, which instructs search engines to disregard the page. This may pose challenges for affected customers seeking information through search engine queries. The company has not explained this decision.
Additionally, during the investigation, a second suspected security incident involving a publicly accessible content management system was discovered, which contained press releases, including Lyca’s statement about the cyber attack. This system, according to Lyca, is a test environment used by vendors and partners. Following this discovery, the content management system was promptly taken offline.
Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.