Cyber attack on Movistar: what happened, who it affects and how to protect your data

The recent cyberattack on Movistar has caused great concern in the technology sector and among millions of users. A malicious actor claims to have accessed 22 million customer records, exposing highly sensitive personal data.

In this article you will find everything that is known so far about the incident, who it could affect and how you can protect your personal information against these types of digital threats.

‍

What exactly has happened?

A cybercriminal, identified in specialized forums as Dedale, claims to have gained access to a massive Movistar database. As a test, you have filtered a sample of a million real records, mainly corresponding to clients from Peru.

The compromised data includes:

• Names and surnames
• Document numbers (such as national identification number)
• Mobile phone numbers
• Contracted plans
• Account update dates

The attacker has demanded a reward of 1,500 dollars so as not to release the rest of the data, an unusually low figure that has raised suspicions about their real motivation.

‍

Which users does it affect?

The sample published so far refers exclusively to clients in Peru. However, given that Telefónica operates in multiple markets —including Spain—, it cannot be ruled out that the impact will be wider.

The company has indicated that, so far, no unauthorized access to systems has been detected in Spain. However, the investigation is still ongoing.

‍

How has Telefónica reacted?

The company has activated its cybersecurity incident management protocols and is working to clarify the source of the breach, its real scope and the potential associated vulnerabilities. In addition, it has initiated measures to strengthen its systems and protect customer information.

The corporate strategy includes:

• Forensic analysis of affected systems
• Strengthening your security systems
• Proactive monitoring for possible additional leaks

This incident reinforces the need for telecommunications companies to adopt a solid cybersecurity strategy, which includes not only technology, but also training and clear action protocols.

‍

What can you do if you are a Movistar customer?

Although the direct impact in Spain has not been confirmed, It is essential to take precautions. Here are some key actions to minimize any potential risks:

1. Change your passwords:
Especially if you use the same credentials on multiple platforms.

2. Activate two-step authentication:
Add an extra layer of security to your accounts.

3. Check the activity of your contracted services:
Watch for unauthorized movements or changes.

4. Don't share personal data through unverified channels:
Be wary of suspicious calls, SMS or emails.

5. Use leak monitoring tools:
Services such as HaveIBeenPwned they let you know if your email has been compromised before.

‍

Why is this attack important?

Telecom operators manage extremely valuable data: from personal information to banking and consumer details. An attack like this demonstrates the increasing sophistication of the cybercrime and the urgent need to improve digital protection strategies.

‍

Conclusion: Cybersecurity starts with being informed

The cyberattack on Movistar not only tests the responsiveness of a large corporation, but it is also a wake-up call for users. Be informed, act with prevention and adopt good digital habits are the best defense against increasingly frequent and sophisticated threats.

If you want to be protected against these attacks, contact us now at info@apolocybersecurity.com