iTnews
  • Home
  • News
  • Technology
  • Telco/ISP

UK telco TalkTalk hacked, 4m customers affected

By Staff Writers on Oct 26, 2015 6:40AM
UK telco TalkTalk hacked, 4m customers affected

Credit card details likely stolen.

British broadband provider TalkTalk revealed it has suffered an attack on its systems that may have led to the theft of personal data from its more than 4 million customers.

The data could include credit card and bank details, and if the theft is confirmed by a police investigation it would be one of Britain's biggest online security breaches.

The telco said it had received a ransom demand from an unidentified party claiming responsibility for the attack.

"We have been contacted by, I don't know whether it is an individual or a group, purporting to be the hacker," TalkTalk CEO Dido Harding told the BBC.

She said the demand for payment came by email into her corporate account, but she declined to give further details due to the ongoing police investigation.

Harding said a "very significant" amount of data was stolen, and she could not confirm whether customers' personal information was encrypted.

"I am confident a material number of our customers have been affected, which is why I am taking the precaution of warning all of our customers," she said.

Jens Monrad, security expert for FireEye, said samples of financial data which appeared to come from TalkTalk customers had been spotted for sale in cybercriminal forums on the so-called dark web.

A TalkTalk spokeswoman declined to comment, citing the police investigation.

The attack is potentially one of the most damaging to hit a British company, and follows dozens of high-profile cases targeting retailers and banks in North America.

TalkTalk said there was a chance names, addresses, dates of birth, phone numbers, email addresses, TalkTalk account information, credit card details and/or bank details had been accessed.

"Potentially this could affect all of our customers," Harding told the BBC.

The telco has hired defense company BAE Systems to investigate the attack.

A spokeswoman for BAE's Applied Intelligence division said the company's cyber-specialists were analysing "vast quantities" of data to help establish how the breach happened and what information was stolen.

TalkTalk later said the attack had occurred on its website, not its core systems, and said it did not store complete credit card details on the site.

"Any credit card details that may have been accessed had a series of numbers hidden and therefore are not usable for financial transactions eg 012345xxxxxx 6789," it said.

"We now expect the amount of financial information that may have been accessed to be materially lower than initially believed and would on its own not enable a criminal to take money from your account."

It is offering free credit reporting services to affected customers for a year from credit reference agency Noddle.

Third breach this year

The attack is the third data breach to hit TalkTalk this year, and experts said it would damage the reputation of the company, which competes with bigger rivals BT, Virgin Media and Sky in the broadband market.

"Their brand will be damaged and their customers will say it is the final straw," said computer security expert Graham Cluley.

Shares in TalkTalk, which had fallen 7 percent since its websites went down last Thursday, fell as much as 8.5 percent on Friday to a two-year low of £0.238 (A$0.51). They clawed back some of the losses to close down 4.4 percent at £0.257.

Monrad said hackers seeking to exploit the value of stolen customer data often publish small samples of the data in order to attract buyers in the underworld who will in turn try and exploit customer details for financial gain.

"Our field intelligence operation has found what appears to be a direct dump of various database information from TalkTalk," he said.

He said the samples FireEye had collected contained specific bank account and credit card information from what appeared to be TalkTalk customers.

Harding said the first sign the company was being targeted came on Thursday lunchtime, when its website was hit by what appeared to be a distributed denial of service (DDoS) attack - where a site is flooded by simultaneous request from multiple sources.

She said the company went public late on Friday when it had established that customer data had been compromised.

The Metropolitan Police said its cyber crime unit was investigating an alleged data theft from a telecommunications website, without giving details.

Personal data including names, addresses and phone numbers were stolen from TalkTalk at the start of the year, and in August servers owned by Carphone Warehouse, the retailer which founded TalkTalk, were attacked, potentially affecting 480,000 TalkTalk mobile customers.

Got a news tip for our journalists? Share it with us anonymously here.
Copyright Reuters
© 2019 Thomson Reuters. Click for Restrictions.
Tags:
attackbreachhacksecuritytalktalktelco/isp

Partner Content

Winning strategies for complaints and disputes management in financial services
Promoted Content Winning strategies for complaints and disputes management in financial services
Security "mindset shift" needed to protect organisations
Promoted Content Security "mindset shift" needed to protect organisations
Accenture and Google Cloud team up to create a loveable, Australian-first, renewable energy product
Promoted Content Accenture and Google Cloud team up to create a loveable, Australian-first, renewable energy product
How to turn digital complexity into competitive advantage
Promoted Content How to turn digital complexity into competitive advantage

Sponsored Whitepapers

Free eBook: Digital Transformation 101 – for banks
Free eBook: Digital Transformation 101 – for banks
Why financial services need to tackle their Middle Office
Why financial services need to tackle their Middle Office
Learn: The latest way to transfer files between customers
Learn: The latest way to transfer files between customers
Extracting the value of data using Unified Observability
Extracting the value of data using Unified Observability
Planning before the breach: You can’t protect what you can’t see
Planning before the breach: You can’t protect what you can’t see

Events

  • Forrester Technology & Innovation Asia Pacific 2022
By Staff Writers
Oct 26 2015
6:40AM
0 Comments

Related Articles

  • 'Back from vacation' - Lapsus$ hackers claim breach of Globant
  • US to tell critical rail, air companies to report hacks
  • T-Mobile says hackers stole about 7.8m postpaid customers' personal data
  • Twitter says zero-day bug leaked account data
Share on Twitter Share on Facebook Share on LinkedIn Share on Whatsapp Email A Friend

Most Read Articles

Services Australia sets changeover date for myGov

Services Australia sets changeover date for myGov
Google Cloud IoT Core goes on the end-of-life list

Google Cloud IoT Core goes on the end-of-life list
NBN Co proposes to axe CVC across all plans by mid-2026

NBN Co proposes to axe CVC across all plans by mid-2026
NSW Police dumps Bezos-backed Mark43 from core systems overhaul

NSW Police dumps Bezos-backed Mark43 from core systems overhaul

Digital Nation

Stakes are higher for cybersecurity in Web3: Gal Tal-Hochberg, CTO at Team8
Stakes are higher for cybersecurity in Web3: Gal Tal-Hochberg, CTO at Team8
Edge and IoT critical to Web3 infrastructure
Edge and IoT critical to Web3 infrastructure
Save the Date — Digital Nation Live launches on October 25
Save the Date — Digital Nation Live launches on October 25
CommBank’s mobile banking app beats ANZ, NAB, Suncorp and Westpac: Forrester
CommBank’s mobile banking app beats ANZ, NAB, Suncorp and Westpac: Forrester
Crypto losses to crime surge to $1.9 B in first half of 2022: Chainalysis
Crypto losses to crime surge to $1.9 B in first half of 2022: Chainalysis
All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of nextmedia's Privacy Policy and Terms & Conditions.