Time Warner Cable Warns 320,000 Customers of Possible Compromise (csoonline.com)

← Back to Stories (view on slashdot.org)

Time Warner Cable Warns 320,000 Customers of Possible Compromise (csoonline.com)

Posted by timothy on Thursday January 7, 2016 @04:00AM from the watch-your-email dept.

itwbennett writes: Time Warner Cable said on Wednesday that up to 320,000 customers have had their accounts compromised. 'We have not yet determined how the information was obtained, but there are no indications that TWC's systems were breached,' said Eric Mangan, public relations director for Time Warner Cable. 'The emails and passwords were likely previously stolen either through malware downloaded during phishing attacks or indirectly through data breaches of other companies that stored TWC customer information, including email addresses.' If this breach is like many others, expect that number of affected customers to grow, too.

35 comments

Min score:

Reason:

Sort:

Who did you sell to? by Opportunist · 2016-01-07 04:08 · Score: 4, Insightful

So what "other companies" would have the email addresses of your customers? Who did you sell the information to?

--
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
1. Re:Who did you sell to? by Anonymous Coward · 2016-01-07 04:45 · Score: 0
  
  So what "other companies" would have the email addresses of your customers? Who did you sell the information to?
  Forget the email addresses, why the hell would other companies have TWC customer passwords?!
  
  The emails and passwords were likely previously stolen either through malware downloaded during phishing attacks or indirectly through data breaches of other companies that stored TWC customer information, including email addresses
2. Re: Who did you sell to? by EthanV2 · 2016-01-07 05:27 · Score: 1
  
  I'm pretty sure they mean "other companies that have been breached, to which our customers were also registered". As in someone was registered with, for example, Adobe when they got breached, and they used the same email address and password for their TWC account.
3. Re: Who did you sell to? by Anonymous Coward · 2016-01-07 05:33 · Score: 0
  
  Could also be outsourced customer service/tech support contractor companies.
4. Re:Who did you sell to? by thoromyr · 2016-01-07 05:41 · Score: 2
  
  the summary may simply be poor, but most likely what is being referred to is password re-use.
  Say my email address is thoromyr@gmail.com and I'm a customer at Acme Corporation. Like many places, they use my email address as the username. I use the password "Pass1234" because it is strong (upper case, lower case and numbers) and easy to remember (those security guys said I needed to create a memorable password that met their "complexity requirements").
  Later on, I get an account at Atlassian and, surprise, they also use my email address as the username. Now, coming up with one memorable yet complex password is hard work so, like most people, I use it again. A few months later, Atlassian announces that their Jira system was compromised and usernames and passwords leaked.
  Acme Corporation hasn't had a compromise, but now someone with the information from the Atlassian compromise can login as me on their system.
  Even worse, if I'm like most people I used the same password at gmail, so they can login as me there and probably find every place I do business with and can try the logins there (and if for some reason the password does not work go through the password reset procedure).
  Password re-use is very common.
5. Re:Who did you sell to? by Anonymous Coward · 2016-01-07 05:50 · Score: 0
  
  The companies that they use to outsource their tech support, marketing, etc.
6. Re:Who did you sell to? by bfpierce · 2016-01-07 06:02 · Score: 1
  
  Anything you sign into using your TWC account to access online.
  So any of the channels on Roku as one example, there are many many others.
7. Re:Who did you sell to? by toonces33 · 2016-01-07 06:07 · Score: 1
  
  I get that it is common, but I personally use a password vault (both on PC and phone) so I can use different random passwords for every account.
  And the vault is secured with a YubiKey, so even if someone stole the database and somehow knew the password, they still wouldn't be able to get in.
8. Re:Who did you sell to? by antdude · 2016-01-07 15:28 · Score: 1
  
  Probably ALL the other companies.
  
  --
  Ant(Dude) @ Quality Foraged Links (AQFL.net) & The Ant Farm (antfarm.ma.cx / antfarm.home.dhs.org).
9. Re: Who did you sell to? by Zaowulf · 2016-01-08 03:01 · Score: 1
  
  AFAIK, TWC doesn't outsource their tech support. Source: Their Tier III desk is here in town and I interviewed for a position a couple years ago.
They don't know how they were breached? by Big+Hairy+Ian · 2016-01-07 04:17 · Score: 2

They probably just sent the wrong file out to be cold called

--
Build a Man a Fire, and He'll Be Warm for a Day. Set a Man on Fire, and He'll Be Warm for the Rest of His Life.
Shhhhhhocking! by NominalLoss · 2016-01-07 04:21 · Score: 1

Time Warner refuses to be beaten in worst customer service.
SSNs? by Anonymous Coward · 2016-01-07 04:23 · Score: 0

Cable companies usually ask for a social security number (SSN). Were customer SSNs exposed as well?
WTF? by Alumoi · 2016-01-07 04:28 · Score: 4, Insightful

'The emails and passwords were likely previously stolen either through malware downloaded during phishing attacks or indirectly through data breaches of other companies that stored TWC customer information, including email addresses.'
WTF was the info doing there? Outside TWC? Oh, don't tell me, let me guess: advertising.
1. Re:WTF? by Anonymous Coward · 2016-01-07 05:40 · Score: 1
  
  My money is on customer service/tech support/sales subcontractors. All telecom companies outsource a lot of that.
2. Re:WTF? by Anonymous Coward · 2016-01-07 07:42 · Score: 0
  
  it almost kind of sounds like he's implying that a bunch of other companies got hacked, and the hackers then took the time to make a list of ONLY the TWC customers from all the stuff they got, and released just that... as if someone was trying to "frame" TWC and make it look like they got hacked.
  the advertising thing is much more likely. probably TWC doesn't know how to remove columns from an excel file so they just gave the entire list with all the passwords, security questions, ...
serious consequences for home users by nimbius · 2016-01-07 04:36 · Score: 4, Interesting

this is little more than an irritation for most slashdotters practicing password segregation, but for the average home user the consequences of this are pretty relevant. The target for the data exfiltration, time warner, services individuals who cant distinguish internet from facebook or google. The password they use for time warner is likely the same for their wireless router (provided and configured by time warner) as well as their banking institution, amazon, and countless other online services. Whats even more infuriating is how clandestine Time Warner is being about this breech. Nowhere on the front of site for their cable conglomerates web presence is a breech even hinted. when logging into bill pay, the site also conveniently omits the fact that time warner has released the personal credentials of a usergroup the size of a midwestern city.

the real kicker? because this was reported by the federal government and not through time warners own due diligence, it raises more sincere questions about just how embeddded federal intelligence and law inforcement agencies are with internet service providers.

--
Good people go to bed earlier.
1. Re:serious consequences for home users by Anonymous Coward · 2016-01-07 05:24 · Score: 0
  
  Most likely it was done because they found the data in a malware network repository and not through direct spying.
2. Re:serious consequences for home users by grimshaw · 2016-01-07 05:41 · Score: 1
  
  I got one of these notices. My username segregation; password segregation; service segregation practices are solid.
  The account in question existed for probably 15 years (for junk mail handling). The username and password have never been used anywhere else. The account was used with minimal frequency (maybe once a year) and the systems it was used on were generally trusted systems... not a polluted web surfing environment. I mostly used it with cli fetchmail on a server.
  Occam's razor... a breach at TWC is simply the most likely scenario on how this largely unused junk mail account could have been exposed. In the final analysis, I expect to hear a password hash dump from one of their systems was the source.
Question by Anonymous Coward · 2016-01-07 04:40 · Score: 0

What pays off more to help a poor family? Should a person work as a suicide bomber or sell its body to get profits with the organs?
Not our fault by Anonymous Coward · 2016-01-07 04:46 · Score: 0

We don't know how the data was breached, but we're completely sure it wasn't out fault. Hard for me to believe that they know that the data was compromised without having been the target of the breach.
1. Re:Not our fault by w1zz4 · 2016-01-07 05:28 · Score: 1
  
  Happen all the time, you happen to see lists of compromised data on pastebin or like website with alot of your customer data but not only yours, which suggest phishings attacks.
2. Re:Not our fault by vtcodger · 2016-01-07 05:38 · Score: 1
  
  Some other dude did it." The lawyers have spoken:
  In case you are curious, yes, there do seem to be folks out there keeping totals on acknowledged data breaches. e.g. http://www.idtheftcenter.org/i...
  2005 toÂNovember 30, 2015
  Number of breaches = 5,754
  Number of Records = 856,548,312
  
  --
  You can't see ANYTHING from a car, You've got to get out of the goddamned contraption and walk...Edward Abbey
3. Re:Not our fault by lhowaf · 2016-01-07 06:32 · Score: 1
  
  "Identity Theft Resource Center"? It's a cookbook!
Enough yet? by Anonymous Coward · 2016-01-07 05:40 · Score: 0

Will this get anyone to cancel? Will anyone say "That's it, I've had enough, I don't care if they're the only broadband/TV provider. I'll wait for my shows to download overnight."
Password changed by PRMan · 2016-01-07 06:08 · Score: 2

Unique TWC password changed. Thanks, LastPass!

--
Peter predicted that you would "deliberately forget" creation 2000 years ago...
Very Related by ThatsNotPudding · 2016-01-07 06:13 · Score: 3, Interesting

How often should we change all our unique passwords? Once a quarter? Monthly? In real-time, like changing phaser modulation when attacking the Borg?
1. Re:Very Related by antdude · 2016-01-07 15:35 · Score: 1
  
  TWC = Borgs
  
  --
  Ant(Dude) @ Quality Foraged Links (AQFL.net) & The Ant Farm (antfarm.ma.cx / antfarm.home.dhs.org).
Nothing Yet... by Anonymous Coward · 2016-01-07 06:39 · Score: 0

I'm a sad Time Warner(RoadRunner) customer. No email or snail-mail yet.
1. Re:Nothing Yet... by networkzombie · 2016-01-07 06:50 · Score: 1
  
  I'm a TWC customer and they do not have my email address. They never asked for it and I never gave it. They never offered me an opportunity to create a RoadRunner email, and I would decline anyway. I just get a bill every month. Rates go up every 3 months or so. Still waiting for DOCSIS 3.
I got notice from TW...looked like Phishing email! by Anonymous Coward · 2016-01-07 06:50 · Score: 1

I received the email from Time-Warner. Things they did wrong in their notice:
1. Quote "Time Warner Cable was recently notified by the F.B.I. that some of our customers’ email addresses including account passwords may have been compromised." Phish alarm #1 set (allusion to FBI notification)!
2. Embedded link to change password (Who embeds links in legitimate 'reset your password' notices?). Phish alarm #2 set and activated!
No link to 'more information here', only toll free phone numbers. Also, I only use the email password for TW, nothing else, ever for over 15 years now. I do not duplicate my email password for them anywhere, only ever sign in via web email or home (Mac OS X "Mail" program, served up by...Time-Warner!).
So if my password went out via anyone, it had to be Time-Warner, despite their claims otherwise.
Worse in-house record keeping by Anonymous Coward · 2016-01-07 09:52 · Score: 0

I didn't get a bill for December, so I went in to pay it cold. Found out why I didn't get a bill for December, they routed someone else's mailed payment to my account and I was sitting at a credit.
If their record keeping is that bad, I'm not surprised they got hacked.
What a joke. by Anonymous Coward · 2016-01-07 11:23 · Score: 0

They claim that their cable systems have not been hacked. Yet, the FBI had to tell them that they had a problem. How can they make claims that their cable network is not a problem when they claim that they don't know how it happened?
A new set of Senators and Congressmen in the making!!!!
Re:warnings are for cows by MobSwatter · 2016-01-07 12:58 · Score: 1

Moooo! Moooo! Moooo! And the herd runs.
Not likely, cable services based on territory there is no where to run too unless they leave their homes. Best to prepare big pharma train for herpes epidemic.