Data On 'Millions' Of Time Warner Cable Customers Leaked

Details related to more than 4 million Time Warner Cable customers were exposed online in a major data breach, according to a report from Kromtech Security, but it was a partner of the U.S. cable operator, rather than TWC itself, that was at fault, according to the security export.

Customer data for units of Charter Communications Inc. and other companies was left unprotected online in data stockpiles that Broadsoft Inc. kept online, security company Kromtech Alliance Corp. wrote on a company blog.

A Charter representative refused to elaborate, but Gizmodo, a part of Gawker Media having brands such as Deadspin and Lifehacker, which is run in India by Times Internet, says the breach originated in India at BroadSoft, a communications company whose partners included Time Warner Cable.

The leaked records records do not represent individual customers, meaning that fewer than 4 millions customers' personal information was revealed.

"We see more and more examples of how bad actors use leaked or hacked data for a range of crimes or other unethical purposes", said Bob Diachenko, Kromtech's chief communications officer.

More news: Turkish guards indicted in United States for attacking pro-Kurdish protesters

The leaked data includes a wealth of information in its four million (or so) records.

Charter Communications purchased Time Warner Cable past year and renamed in Spectrum.

The servers also contained internal company records, including SQL database dumps, internal emails, and code containing the credentials to an unknown number of external systems.

The security researchers were investigating a different data breach incident at World Wrestling Entertainment (WWE).

The BroadSoft data was not properly configured to allow public access in AWS, Kromtech said.

More news: RIP Tango: Google announces ARCore, its answer to Apple's ARKit

One text file that dated back to November 2010 contained more than 4 million records which detailed subscribers' usernames, email addresses, Mac addresses, device serial numbers and financial transaction data.

It appears as though numerous customers who are affected were also using the Time Warner Cable smartphone app.

Broadsoft could not be immediately reached for comment.

It has advised MyTWC users to change their user names and passwords. BroadSoft tells Gizmodo that it locked down its Amazon data (Charter says it was taken down) and hasn't seen evidence that intruders accessed the information. "We apologise for the frustration and anxiety this causes, and will communicate directly to customers if their information was involved in this incident".

More news: Despite alleged arson attacks on Rohingya, Myanmar claims situation 'under control'


Popular

CONNECT