Movistar Peru Customer Data Allegedly Leaked in 4 Million-Record Breach A threat actor has claimed to possess a database containing approximately 4 million records tied to Movistar Business Portal in Peru, posting details on a dark web forum. The leaked data, if authentic, includes customers’ full names, mobile numbers, identity documents, birth dates, and technical details of their telecommunications plans. While the legitimacy of the breach remains unconfirmed, security experts warn that such information could fuel spam campaigns, phishing attacks, and phone scams, particularly if attackers impersonate Movistar’s technical support to extract passwords or financial data. The exposed details also heighten the risk of SIM swapping, where cybercriminals use stolen identity documents and phone numbers to duplicate SIM cards and hijack bank accounts. The incident involves Movistar Peru, which was sold by Telefónica Hispanoamérica S.A. to Argentine firm Integra Tec for €900,000 in 2023. The sale was part of Telefónica’s broader divestment strategy in Latin America, following financial losses in Peru and other regional markets, including Uruguay, Ecuador, and Argentina. The company has since signaled plans to exit additional Latin American operations, including Colombia, Chile, and Mexico.

Cybercriminal Dedale Targets BarcelonaTelefónica, Leaks 1M Peruvian Customer Records BarcelonaTelefónica is probing a cyberattack by the threat actor Dedale, who claims to have accessed 22 million customer records—though the breach appears limited in scope. As proof, the attacker leaked a database containing one million records, primarily affecting users in Peru. The compromised data includes multiple entries per customer (e.g., names, ID numbers, addresses), meaning the incident does not equate to 22 million unique individuals being exposed. Telefónica confirmed that Spanish customers remain unaffected, as the breach is tied to its former Peruvian subsidiary. The attack surfaced after HackManac disclosed details on X (formerly Twitter). Notably, Dedale is demanding a $1,500 ransom—a fraction of typical extortion demands—raising questions about the attacker’s motives. The breach coincides with Telefónica’s recent sale of its bankrupt Peruvian operations to Integra Tec International for €900,000, finalized last month. Investigations are ongoing.