Kitz ADSL Broadband Information
adsl spacer  
Support this site
Home Broadband ISPs Tech Routers Wiki Forum
 
     
   Compare ISP   Rate your ISP
   Glossary   Glossary
 
Please login or register.

Login with username, password and session length
Advanced search  

News:

Author Topic: Possible TalkTalk security issue  (Read 1068 times)

GigabitEthernet

  • Kitizen
  • ****
  • Posts: 2124
Possible TalkTalk security issue
« on: March 08, 2021, 05:04:16 PM »

I've recently become a TalkTalk customer, I am due to go live shortly.

I've just logged into my account and I am able to see the details of somebody else, including their name, address and telephone number.

This is surely extremely concerning and must violate some kind of privacy law?
Logged

burakkucat

  • Global Moderator
  • Senior Kitizen
  • *
  • Posts: 33756
  • Over the Rainbow Bridge
    • The ELRepo Project
Re: Possible TalkTalk security issue
« Reply #1 on: March 08, 2021, 06:00:47 PM »

This is surely extremely concerning and must violate some kind of privacy law?

I'm sure it does.  :o  And, I suspect, the ICO would be very interested to know the full details of your discovery.
Logged
:cat:  100% Linux and, previously, Unix. Co-founder of the ELRepo Project.

Please consider making a donation to support the running of this site.

GigabitEthernet

  • Kitizen
  • ****
  • Posts: 2124
Re: Possible TalkTalk security issue
« Reply #2 on: March 08, 2021, 10:11:25 PM »

I'm sure it does.  :o  And, I suspect, the ICO would be very interested to know the full details of your discovery.

Case raised to the ICO. The social media team were not interested in the slightest and seemed to think it was normal before an account was activated. Obviously it isn't but it didn't stop them repeating it like a robot.
Logged

Alex Atkin UK

  • Kitizen
  • ****
  • Posts: 2875
    • Thinkbroadband Quality Monitors
Re: Possible TalkTalk security issue
« Reply #3 on: March 09, 2021, 12:43:02 AM »

Just, wow!
Logged
INTAKE (ECI) 2xHome Hub 5A (OpenWRT) on Zen/Plusnet, 1xHauwei B535-232 on Voxi 4G, 1xHauwei H122-373 on Three 5G Router: pfSense (i5-7200U) WiFi: nanoHD (OpenWRT) + Honor Router 3
My Broadband History & Ping Quality Monitors

Weaver

  • Addicted Kitizen
  • *****
  • Posts: 9989
  • Retd s/w dev; A&A; 3x7km lines; Firebrick; IPv6
Re: Possible TalkTalk security issue
« Reply #4 on: March 09, 2021, 12:49:21 AM »

Wow indeed!  :(
Logged

tubaman

  • Addicted Kitizen
  • *****
  • Posts: 7976
Re: Possible TalkTalk security issue
« Reply #5 on: March 09, 2021, 08:27:14 AM »

... The social media team were not interested in the slightest and seemed to think it was normal before an account was activated. ...
What planet are they living on!  :no:
Logged
BT FTTC 80/20 Huawei Cab - Zyxel VMG8924-B10A

broadstairs

  • Kitizen
  • ****
  • Posts: 3524
Re: Possible TalkTalk security issue
« Reply #6 on: March 09, 2021, 09:43:21 AM »

Sadly they do not have a good record on security  :o I suspect they are not the only ones  :-X

Stuart
Logged
ISP:TalkTalk Connection:FTTC Cab:ECI Router:Zyxel VMG3925

meritez

  • Reg Member
  • ***
  • Posts: 670
Re: Possible TalkTalk security issue
« Reply #7 on: March 09, 2021, 10:18:49 AM »

Do they use 2FA yet, as in two factor authentication?

Logged

broadstairs

  • Kitizen
  • ****
  • Posts: 3524
Re: Possible TalkTalk security issue
« Reply #8 on: March 09, 2021, 10:51:39 AM »

Do they use 2FA yet, as in two factor authentication?

Not that I'm aware of and 2fa can be a real PITA.

I suspect this problem happens because they do not delete account detail before reusing them for a new account.

Stuart
Logged
ISP:TalkTalk Connection:FTTC Cab:ECI Router:Zyxel VMG3925

4candles

  • Kitizen
  • ****
  • Posts: 3080
  • Not young enough to know everything
Re: Possible TalkTalk security issue
« Reply #9 on: March 09, 2021, 05:23:04 PM »

Maybe Dido can explain?   ;)
Logged
To err is human
To purr feline

burakkucat

  • Global Moderator
  • Senior Kitizen
  • *
  • Posts: 33756
  • Over the Rainbow Bridge
    • The ELRepo Project
Re: Possible TalkTalk security issue
« Reply #10 on: March 09, 2021, 05:31:09 PM »

Maybe Dido can explain?   ;)

Please don't distract Baroness Diana Harding from her current "good works".  ::)
« Last Edit: April 13, 2021, 09:10:26 PM by burakkucat »
Logged
:cat:  100% Linux and, previously, Unix. Co-founder of the ELRepo Project.

Please consider making a donation to support the running of this site.

4candles

  • Kitizen
  • ****
  • Posts: 3080
  • Not young enough to know everything
Re: Possible TalkTalk security issue
« Reply #11 on: March 09, 2021, 05:32:46 PM »

 ;D
Logged
To err is human
To purr feline

Alex Atkin UK

  • Kitizen
  • ****
  • Posts: 2875
    • Thinkbroadband Quality Monitors
Re: Possible TalkTalk security issue
« Reply #12 on: March 09, 2021, 05:53:12 PM »

Not that I'm aware of and 2fa can be a real PITA.

I suspect this problem happens because they do not delete account detail before reusing them for a new account.

Stuart

Why would you EVER reuse an old account?

I couldn't even sign up to Plusnet with my old username because they kept the details (potentially in breach of data protection) and I hadn't been a customer in 20+ years.
Logged
INTAKE (ECI) 2xHome Hub 5A (OpenWRT) on Zen/Plusnet, 1xHauwei B535-232 on Voxi 4G, 1xHauwei H122-373 on Three 5G Router: pfSense (i5-7200U) WiFi: nanoHD (OpenWRT) + Honor Router 3
My Broadband History & Ping Quality Monitors

bob.gas

  • Reg Member
  • ***
  • Posts: 250
Re: Possible TalkTalk security issue
« Reply #13 on: April 13, 2021, 06:49:36 PM »

I'm sure it does.  :o  And, I suspect, the ICO would be very interested to know the full details of your discovery.

I suppose it's not a false address to show one what to enter ( so to speak)?
Logged
Before you criticize someone, you should walk a mile in their shoes. That way, when you criticize them, you'#039#039re a mile away and you have their shoes
 

anything