UK Telecomms firm TalkTalk has been breached again, but this time they are warning that financial and personal details of 4 Million customers have been exposed.

Widespread coverage today suggests that an orchestrated attack took place and, according to the BBC,

The following customer data, not all of which was encrypted, had been accessed:

  • Names and addresses
  • Dates of birth
  • Email addresses
  • Telephone numbers
  • TalkTalk account information
  • Credit card and bank details"

TalkTalk has suffered previous breaches which for many will erode any sympathy and benefit of the doubt when hearing of this latest attack. Are they careless and ignorant with respect to information security, or unlucky and victimized? Maybe somewhere in between?

A harsh assessment is that there are only two reasons why an organization like TalkTalk gets breached - underinvestment in security defense technology and cutting corners in the operation of security best practices.

Calling this a "significant and sustained cyber-attack" makes this titanic breach sound forgivable and understandable, in other words, 'How can anyone blame us for getting caught?'

But even at this early stage, the reported details suggest that mistakes have been made. Not just the previous breaches, but other reports suggest that weak certificates were still being used on their accounts.talktalk.co.uk website - TalkTalk start to look like an organization that doesn't 'get' contemporary information security and the need for technology and security best practices.

The range of cyber attack weaponry is so vast and constantly evolving that 100% security is impossible, and organizations need to start thinking now in terms of Breach Detection: 'How will we know when we do suffer a breach, and what will we do when it happens?'

Getting an idea of the answers to these questions is just as crucial as putting defense measures and security best practices in place, especially if you are in charge of the bank details of 4 million trusting customers.

** UPDATE - 26 October 2015 - TalkTalk now report the following

"This cyber attack was on our website, not our core systems, We can confirm that we do not store complete credit card details on the website; any credit card details that may have been accessed had a series of numbers hidden and therefore are not usable for financial transactions eg 012345xxxxxx 6789

TalkTalk My Account passwords have not been accessed, We now expect the amount of financial information that may have been accessed to be materially lower than initially believed and would on its own not enable a criminal to take money from your account. The Metropolitan Police Cyber Crime Unit criminal investigation continues"

 

 

Read more at the BBC website

Read more at TalkTalk breach SCMagazine

Read more on TalkTalk breach at TalkTalk.co.uk

 

 

NNT Suite of Products

change tracker gen7r2 logo

Combine industry leading Device Hardening, File Integrity Monitoring, Change Control, Configuration Management & Compliance Management into one easy to use solution that can scale to the most demanding environments!

fastcloud logo

Automatically evaluate and verify the authenticity of file changes in real-time with NNT FAST™ (File Approved-Safe Technology) Integrity Assurance.

log tracker logo logo

Comprehensive and easy to use security information & event log management with intelligent & self-learning correlation technology to highlight potentially harmful activity in seconds.

vulnerability tracker logo

Continuously scan and identify vulnerabilities with unparalleled accuracy and efficiency, protecting your IT assets on premises, in the cloud and mobile endpoints.

USA Offices
New Net Technologies LLC
Naples
Suite #10115, 9128 Strada Place
Naples, Florida, 34108
Atlanta
1175 Peachtree St NE
Atlanta, Georgia, 30361.
Portland
4145 SW Watson, Suite 350
Beaverton, Oregon, 97005.

Tel: (844) 898-8358
email [email protected]
UK Office
New Net Technologies Ltd
Rivers Lodge, West Common
Harpenden, Hertfordshire
AL5 2JD

Tel: 01582 287310
email [email protected]
CIS benchmarking SEWP Cybersecurity 500Sans Institute Now Certified IBM Security
Copyright 2019, New Net Technologies LLC. All rights reserved. 
NNT and Change Tracker are registered trademarks of New Net Technologies LLC.
All other product, company names and trademarks are the property of their respective owners.