The error, a misconfigured security setting on a cloud server, made customer phone numbers, names and some PIN codes publicly available online, CNN Tech reported. PIN codes are used to confirm the identity of people who call for customer service, the media outlet said.
Cybersecurity firm UpGuard found the leak. UpGuard initially reported the error could impact up to 14 million accounts, multiple media outlets reported.
CNN Tech reported that an UpGuard researcher found the data was exposed by Israel-based NICE Systems. The data was collected over the last six months, CNN Tech reported. The researcher alerted Verizon to the leak on June 13, and the security hole was closed on June 22.