Yoigo confirmed that an incident occurred in which individuals outside the organization gained access to some personal data belonging to users of the mobile service. This breach prompted discussions on social media as affected customers shared the teleoperator’s internal message, in which the company acknowledged the cybersecurity event. The notice suggested that phishing attempts are common tools used by criminals to impersonate legitimate entities and mislead individuals.
The attackers may have accessed information such as names, addresses, or phone numbers. One Yoigo customer emphasized that such cyberattacks are a recurring risk in the corporate world.
The company, which operates under Grupo MásMóvil, did not disclose the exact number of affected individuals. It stated that it has strengthened technical security measures to prevent a recurrence and that it has updated the security information requested from users across various processes, so that unauthorized parties cannot access the stolen data. The firm asserted that it followed proper procedures to safeguard sensitive information and to identify any anomalies in line management and new service agreements, as outlined in the notice circulated to customers and shared on social networks such as Twitter.
It was also noted that there may be future requests for additional information from customers, along with further verification steps to ensure genuine customer interest and to reduce the risk of errors associated with phishing campaigns.
The company advised customers to be cautious of emails from dubious origins, unsolicited SMS messages, or calls from unknown numbers, particularly if requests involve codes, passwords, or credit card details.
In response to the incident, Yoigo recommended that customers contact their banks and any authorized service providers directly if they notice suspicious activity. National and international cybersecurity authorities, including the National Cyber Security Institute, should be consulted for doubts or cybersecurity concerns. It is important for users in North America and beyond to stay vigilant and verify communications through official channels to protect personal data against fraud and unauthorized access. (Source attribution: INCIBE).