Kitz ADSL Broadband Information
adsl spacer  
Support this site
Home Broadband ISPs Tech Routers Wiki Forum
 
     
   Compare ISP   Rate your ISP
   Glossary   Glossary
 
Please login or register.

Login with username, password and session length
Advanced search  

News:

Author Topic: Possible TalkTalk security issue  (Read 2364 times)

GigabitEthernet

  • Kitizen
  • ****
  • Posts: 2243
Possible TalkTalk security issue
« on: March 08, 2021, 05:04:16 PM »

I've recently become a TalkTalk customer, I am due to go live shortly.

I've just logged into my account and I am able to see the details of somebody else, including their name, address and telephone number.

This is surely extremely concerning and must violate some kind of privacy law?
Logged

burakkucat

  • Respected
  • Senior Kitizen
  • *
  • Posts: 38300
  • Over the Rainbow Bridge
    • The ELRepo Project
Re: Possible TalkTalk security issue
« Reply #1 on: March 08, 2021, 06:00:47 PM »

This is surely extremely concerning and must violate some kind of privacy law?

I'm sure it does.  :o  And, I suspect, the ICO would be very interested to know the full details of your discovery.
Logged
:cat:  100% Linux and, previously, Unix. Co-founder of the ELRepo Project.

Please consider making a donation to support the running of this site.

GigabitEthernet

  • Kitizen
  • ****
  • Posts: 2243
Re: Possible TalkTalk security issue
« Reply #2 on: March 08, 2021, 10:11:25 PM »

I'm sure it does.  :o  And, I suspect, the ICO would be very interested to know the full details of your discovery.

Case raised to the ICO. The social media team were not interested in the slightest and seemed to think it was normal before an account was activated. Obviously it isn't but it didn't stop them repeating it like a robot.
Logged

Alex Atkin UK

  • Addicted Kitizen
  • *****
  • Posts: 5260
    • Thinkbroadband Quality Monitors
Re: Possible TalkTalk security issue
« Reply #3 on: March 09, 2021, 12:43:02 AM »

Just, wow!
Logged
Broadband: Zen Full Fibre 900 + Three 5G Routers: pfSense (Intel N100) + Huawei CPE Pro 2 H122-373 WiFi: Zyxel NWA210AX
Switches: Netgear MS510TXUP, Netgear MS510TXPP, Netgear GS110EMX My Broadband History & Ping Monitors

Weaver

  • Senior Kitizen
  • ******
  • Posts: 11459
  • Retd s/w dev; A&A; 4x7km ADSL2 lines; Firebrick
Re: Possible TalkTalk security issue
« Reply #4 on: March 09, 2021, 12:49:21 AM »

Wow indeed!  :(
Logged

tubaman

  • Senior Kitizen
  • ******
  • Posts: 12507
Re: Possible TalkTalk security issue
« Reply #5 on: March 09, 2021, 08:27:14 AM »

... The social media team were not interested in the slightest and seemed to think it was normal before an account was activated. ...
What planet are they living on!  :no:
Logged
BT FTTC 55/10 Huawei Cab - Zyxel VMG8924-B10A

broadstairs

  • Kitizen
  • ****
  • Posts: 3697
Re: Possible TalkTalk security issue
« Reply #6 on: March 09, 2021, 09:43:21 AM »

Sadly they do not have a good record on security  :o I suspect they are not the only ones  :-X

Stuart
Logged
ISP:Vodafone Router:Vodafone Wi-Fi hub FTTP

meritez

  • Content Team
  • Kitizen
  • *
  • Posts: 1623
Re: Possible TalkTalk security issue
« Reply #7 on: March 09, 2021, 10:18:49 AM »

Do they use 2FA yet, as in two factor authentication?

Logged

broadstairs

  • Kitizen
  • ****
  • Posts: 3697
Re: Possible TalkTalk security issue
« Reply #8 on: March 09, 2021, 10:51:39 AM »

Do they use 2FA yet, as in two factor authentication?

Not that I'm aware of and 2fa can be a real PITA.

I suspect this problem happens because they do not delete account detail before reusing them for a new account.

Stuart
Logged
ISP:Vodafone Router:Vodafone Wi-Fi hub FTTP

4candles

  • Kitizen
  • ****
  • Posts: 3297
  • Not young enough to know everything
Re: Possible TalkTalk security issue
« Reply #9 on: March 09, 2021, 05:23:04 PM »

Maybe Dido can explain?   ;)
Logged
To err is human - to purr feline
Zen FTTC 40/10 + Digital Voice   FRITZ!Box 7530

burakkucat

  • Respected
  • Senior Kitizen
  • *
  • Posts: 38300
  • Over the Rainbow Bridge
    • The ELRepo Project
Re: Possible TalkTalk security issue
« Reply #10 on: March 09, 2021, 05:31:09 PM »

Maybe Dido can explain?   ;)

Please don't distract Baroness Diana Harding from her current "good works".  ::)
« Last Edit: April 13, 2021, 09:10:26 PM by burakkucat »
Logged
:cat:  100% Linux and, previously, Unix. Co-founder of the ELRepo Project.

Please consider making a donation to support the running of this site.

4candles

  • Kitizen
  • ****
  • Posts: 3297
  • Not young enough to know everything
Re: Possible TalkTalk security issue
« Reply #11 on: March 09, 2021, 05:32:46 PM »

 ;D
Logged
To err is human - to purr feline
Zen FTTC 40/10 + Digital Voice   FRITZ!Box 7530

Alex Atkin UK

  • Addicted Kitizen
  • *****
  • Posts: 5260
    • Thinkbroadband Quality Monitors
Re: Possible TalkTalk security issue
« Reply #12 on: March 09, 2021, 05:53:12 PM »

Not that I'm aware of and 2fa can be a real PITA.

I suspect this problem happens because they do not delete account detail before reusing them for a new account.

Stuart

Why would you EVER reuse an old account?

I couldn't even sign up to Plusnet with my old username because they kept the details (potentially in breach of data protection) and I hadn't been a customer in 20+ years.
Logged
Broadband: Zen Full Fibre 900 + Three 5G Routers: pfSense (Intel N100) + Huawei CPE Pro 2 H122-373 WiFi: Zyxel NWA210AX
Switches: Netgear MS510TXUP, Netgear MS510TXPP, Netgear GS110EMX My Broadband History & Ping Monitors

bob.gas

  • Reg Member
  • ***
  • Posts: 250
Re: Possible TalkTalk security issue
« Reply #13 on: April 13, 2021, 06:49:36 PM »

I'm sure it does.  :o  And, I suspect, the ICO would be very interested to know the full details of your discovery.

I suppose it's not a false address to show one what to enter ( so to speak)?
Logged
Before you criticize someone, you should walk a mile in their shoes. That way, when you criticize them, you'#039#039re a mile away and you have their shoes
 

anything