T-Mobile hack data is genuine

[security curmudgeon <jericho () attrition org>]

http://www.theregister.co.uk/2009/06/09/t_mobile_hack_latest/

T-Mobile hack data is genuine
How deep does the rabbit hole go?
By John Leyden
Posted in Enterprise Security, 9th June 2009 10:57 GMT

T-Mobile has confirmed that files posted on a full disclosure mailing list 
are genuine - but the company fails to explain whether or not 
cybercriminals really got full access to its systems, IDG reports.

Hackers published system config files from T-Mobile's US network on 
Saturday along with claims they had compromised the carrier's core 
systems. "We have everything, their databases, confidential documents, 
scripts and programs from their servers, [and] financial documents up to 
2009," they said.

The unidentified hackers invited bids from interested parties to an email 
address, pwnmobile () safe-mail net, which has since become inactive.

[..]

_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)

Get business, compliance, IT and security staff on the same page with
CREDANT Technologies: The Shortcut Guide to Understanding Data Protection
from Four Critical Perspectives. The eBook begins with considerations
important to executives and business leaders.
http://www.credant.com/campaigns/ebook-chpt-one-web.php