UK telecom company TalkTalk has reported a data breach involving the personal information of over 18.8 million subscribers allegedly for sale by the hacker b0nd. This breach is believed to have occurred via a compromised third-party supplier, specifically CSG's Ascendon platform, used by TalkTalk for subscription management. Although TalkTalk's customer base is around 2.4 million, the hacker's claims about the number of affected users were labeled as significantly overstated by the company. TalkTalk is engaged in an ongoing investigation with the supplier and has implemented security measures to address the situation.
Cory Michal stated that b0nd may have gained access to the CSG Ascendon platform, which contains unencrypted PINs, highlighting significant security flaws.
TalkTalk confirmed unexpected access to a third-party supplier's systems, though they stressed that billing information was not compromised and the claims of affected users were overstated.
Collection
[
|
...
]