TechCrunch News 01月27日
TalkTalk investigating data breach after hacker claims theft of customer data
index_new5.html
../../../zaker_core/zaker_tpl_static/wap/tpl_guoji1.html

 

英国电信巨头TalkTalk正在调查一起数据泄露事件,一名黑客声称窃取了数百万客户的个人信息。黑客在网络犯罪论坛上声称窃取了超过1880万用户的个人数据,包括姓名、邮箱、IP地址、电话号码和用户PIN码。TalkTalk发言人证实正在调查此事,并表示黑客声称的1880万数据量“完全不准确且被严重夸大”。据悉,TalkTalk目前约有240万客户。此次事件源于第三方供应商系统的意外访问和滥用,但TalkTalk强调该系统不存储账单或财务信息。TalkTalk此前在2015年曾因数据泄露被罚款40万英镑。

🚨 黑客声称窃取了超过1880万TalkTalk用户的个人数据,包括姓名、邮箱、IP地址、电话号码和用户PIN码,并在网络犯罪论坛上出售。

🛡️ TalkTalk已证实正在调查数据泄露事件,但强调黑客声称的1880万数据量“完全不准确且被严重夸大”,并指出目前约有240万客户。

⚙️ 此次数据泄露源于对第三方供应商系统(CSG的Ascendon平台)的意外访问和滥用,该平台用于订阅管理,但TalkTalk强调该系统不存储账单或财务信息。

🏛️ TalkTalk曾在2015年因数据泄露事件被罚款40万英镑,当时英国信息专员办公室指出其未能实施“最基本的网络安全措施”。

U.K. telecoms giant TalkTalk has confirmed that it is investigating a data breach after a hacker claimed to have stolen the personal information of millions of customers.

In a post on a popular cybercrime forum seen by TechCrunch, an individual using the alias “b0nd” claimed to have stolen the personal data of more than 18.8 million current and former TalkTalk subscribers. This data, which the threat actor is offering for sale, supposedly includes customer names, email addresses, IP addresses, phone numbers and subscriber PINs. 

In a statement to TechCrunch, TalkTalk spokesperson Liz Holloway confirmed the company is investigating the data breach, but said the 18.8 million figure claimed by the hacker is “wholly inaccurate and very significantly overstated.”

TechCrunch understands that TalkTalk currently has approximately 2.4 million customers.

“As part of our regular security monitoring, given our ongoing focus on protecting customers’ personal data, we were made aware of unexpected access to, and misuse of, one of our third-party suppliers’ systems,” Holloway told TechCrunch. “Our Security Incident Response team are continuing to work with the supplier regarding this matter and protective containment steps were taken immediately.”

Holloway declined to name the third-party supplier, but screenshots shared by b0nd suggest the data was stolen from CSG’s Ascendon platform, which TalkTalk uses for subscription management.

CSG did not immediately respond to TechCrunch’s questions. 

TechCrunch understands that the personal details of a small subset of TalkTalk customers are stored in Ascendon. Holloway confirmed to TechCrunch that “no billing or financial information was stored on this system.”

TalkTalk was previously fined £400,000 after a 2015 data breach in which hackers stole the personal data of 157,000 customers, including some financial information. The U.K.’s Information Commissioner said at the time that TalkTalk had failed to implement “the most basic cyber security measures,” enabling hackers to “penetrate its systems with ease.”

Fish AI Reader

Fish AI Reader

AI辅助创作,多种专业模板,深度分析,高质量内容生成。从观点提取到深度思考,FishAI为您提供全方位的创作支持。新版本引入自定义参数,让您的创作更加个性化和精准。

FishAI

FishAI

鱼阅,AI 时代的下一个智能信息助手,助你摆脱信息焦虑

联系邮箱 441953276@qq.com

相关标签

数据泄露 TalkTalk 网络安全 第三方供应商 用户隐私
相关文章
影响 4900 万客户!戴尔数据遭泄露,涉及姓名、住址等信息
MediExcel 泄露了 50 万份患者文件