Time Warner Cable says data from 320K customers stolen

Time Warner Cable store in NYC, May 26, 2015. REUTERS/Mike Segar
Internet and cable TV provider Time Warner Cable Inc. today revealed that up to 320,000 customers may have had their email passwords stolen.

Emails and password details were gathered either through malware downloaded during phishing attacks or indirectly through data breaches of other companies that stored Time Warner Cable's customer information, including email addresses, said the company on Wednesday.

Reuters:

The company said it has not yet determined how the information was obtained, but there were no indications that Time Warner Cable's systems were breached.

Time Warner Cable spokesman said it was recently notified by the Federal Bureau of Investigation that some customers' email addresses including account passwords "may have been compromised."

Notable Replies

  1. It wasn't just phishing, that's just part of their blame mitigation, like 'Well, it wasn't OUR servers.' They gave the info to some third party who got hacked, or maybe it was RoadRunner itself.

    I got a notification of this on an email account I haven't used in ten years, and I never click email links.

  2. I've had an account I hardly ever used hacked, and it had a pretty tough password. It just started mailing out viruses one day. The account had no address book, but the viruses went to people who had sent me mail in the past. Changing the password did not help. It was clear to me the service provider had been hacked, but of course they blamed me.

  3. I hate the way Time Warner redirects any non properly formed URLs!! they shunt you into "DNSrsearch" which is their search engine? so they're basically stealing pageviews off your typing mistake, wtf?! and if you type certain keywords like "hats" or "shoes" , those will resolve to actual domains - so they're clearly selling access to these keywords allowing third parties to tap into their endless stream of (basically stolen) pageviews...!!! just screams illegal to me, does anyone else hate this?

  4. You don’t have to use TWC’s intentionally broken DNS. Change your DNS settings to point to a server that doesn't do that.

  5. Yeah but you shouldn't have to know how to do that, and what percentage of their subscriber-base could or does? I was forced to diable it for myself after their "unsubscribe" feature continually reset itself and it was alot harder than i expected so i just put a line in my hosts file to block dnsrsearch itself and resolve to nothing.

    Their stolen pageviews are one thing but also they effectively log where their subscribers are going to, the hits on their "dnsrsearch" bullshit-page = mispelled domains of where that subscriber really is browsing..

Continue the discussion bbs.boingboing.net

4 more replies

Participants