Simple Flaw Exposed Data On Millions of Charter Internet Customers

Daniel_Stuckey writes: A security flaw discovered in the website of Charter Communications, a cable and Internet provider active in 28 states, may have exposed the personal account details of millions of its customers. Security researcher Eric Taylor discovered the internet service provider's vulnerability as part of his research, and demonstrated how a simple header modification performed with a browser plug-in could reveal details of Charter subscriber accounts. After Fast Company notified Charter of the issue, the company said it had installed a fix within hours.

Charter kinda sucks

[Khyber]

As a Charter customer, here's how lax they are.

1. Order just internet and phone service, lowest-tier speeds. They come and hook you up with a combo phone/modem, stuff works, you're cruising the internet.
2. Wait two months, call Charter and ask for an upgrade to their maximum-speed plan.
3. They come out with ANOTHER modem (without the phone built-in,) on the claim you need that modem to attain the higher speeds.
4. Tech hooks up the modem, gets it set, leaves.
5. The other modem NEVER gets deprovisioned for internet.
6. You now have two IP addresses and two maximum-speed connections for the price of one. Yes, that other modem is MORE THAN CAPABLE of handling Charter's maximum speed.
7. Multiplex those motherfuckers together and absolutely RAPE Charter's network. They don't seem to care all that much.

So to find out that they are so lax as to allow something like this to happen, not a surprise, at all.