Ericsson USA Reports Data Breach
The U.S. division of the Swedish telecom giant has reported a data breach impacting personal data of both employees and customers. However, the breach did not originate from Ericsson’s own systems but was due to a breach at one of their third-party service providers.
Details of the Unauthorized Access
The breach notification highlighted that unauthorized access took place over a period from April 17 to April 22, 2025. It was only on April 28, 2025, that the service provider identified unusual activity within their network.
According to external sources, the breach was a result of a voice phishing or ‘vishing’ attack. In this scheme, cybercriminals used phone-based social engineering to gain access to a vendor employee’s account, leading to the breach.
Investigation and Findings
Upon detection, an immediate investigation was initiated by the service provider, who also brought in external cybersecurity experts to assess the situation. Due to the intricate nature of the data involved, the investigation extended over several months.
The analysis was completed on February 23, 2026, confirming that sensitive files related to 15,661 individuals had been accessed. Although the notification primarily mentioned personal identifiers, regulatory filings suggest that the breach involved more extensive data, including addresses, Social Security Numbers, government IDs, and financial records.
Response and Mitigation Efforts
Ericsson and the involved service provider have stated that there is no current indication of misuse of the compromised data. In response, the vendor has implemented several security measures, including mandatory password changes and enhanced network security protocols. Furthermore, the Federal Bureau of Investigation (FBI) has been notified to aid in tracking the perpetrators.
Stay informed on the latest in cybersecurity by following us on Google News, LinkedIn, and X. If you have a story you would like us to feature, please reach out.
