Why it matters: A company that remotely (and quietly) revealed billions of text messages worldwide each year that someone had had unauthorized access to their systems for five years. They don't mention what information they can access or whether text messages are shown.
Syniverse is used by carriers like Verizon, T-Mobile, and AT&T to route SMS text messages. Late last month, the organization sent a case to the US Securities and Exchange Commission to propose a merger with another company. The file is hundreds of pages long, but in the section presenting the risks of Syniverse integration, at the bottom of page 69, there is an admission that was hacked in 2016 and not reported until then. this year.
This case describes an incident that occurred in May 2021, when Syniverse discovered that an unidentified person had access to its operating systems and information. The investigation revealed that they had access to Syniverse systems multiple times between May 2016 and May 2021, damaging the login information of 235 Electronic Data Transfer (EDT) customers.
Upon filing the lawsuit, Syniverse says it "rapidly" contacted law enforcement, the legal board and affected clients. While he says he hasn't detected any attempt to monetize or misuse the data accessed, Syniverse says he can't be sure it won't discover more evidence of hacking in the future. Syniverse also says it updated its systems after learning of the hack, but it hasn't said how. No additional information about the possibility of dangerous SMS messages on the Vice motherboard has received more information from Syniverse, but their sources tell them that anyone with access to Syniverse systems can access extensive contact information. Include access length, phone number, location data and SMS content. A hacker could get this information to millions of customers around the world during those five years.
As an example of Syniverse's expansion, in 2019, more than 100,000 text messages were delayed for several months due to a server downtime when the server was reactivated, and Valentine's Day messages expired in November.
Eddie Bellard photo credit
Big SMS routing company admits it was hacked for five years