07-03-2020, 09:02
|
#31
|
Grumpy Fecker
Join Date: Jul 2007
Location: Warrington
Age: 64
Services: Every Weekend
Posts: 16,737
|
Re: Data Breach Incident
Quote:
Originally Posted by JPAC
|
Originally Posted by JPAC View Post
'A customer database left unsecured online by Virgin Media contained details linking some customers to pornography and explicit websites'. mmm?
So i ask again where does it say that >
|
|
|
07-03-2020, 09:09
|
#32
|
cf.mega poster
Join Date: Jun 2003
Posts: 8,899
|
Re: Data Breach Incident
Quote:
Originally Posted by Sirius
So i ask again where does it say that >
|
Ummm - the first paragraph?
|
|
|
07-03-2020, 09:13
|
#33
|
Grumpy Fecker
Join Date: Jul 2007
Location: Warrington
Age: 64
Services: Every Weekend
Posts: 16,737
|
Re: Data Breach Incident
Quote:
Originally Posted by spiderplant
Ummm - the first paragraph?
|
Got it, should be interesting some maybe worried then
|
|
|
07-03-2020, 11:16
|
#34
|
cf.addict
Join Date: Nov 2005
Location: N E Lincs
Posts: 426
|
Re: Data Breach Incident
Yes, taken from the title of the page and the start of the page in bold copy text.
See how you get on with this one.
https://www.theregister.co.uk/2020/0..._leak_details/
|
|
|
07-03-2020, 11:30
|
#35
|
Oh Lanky Lanky.
Join Date: Jun 2003
Location: Shaw, Oldham, Lancashire.
Services: 2 V6 running 360. 500mb BB, Phone line, mobile simm.
Posts: 7,957
|
Re: Data Breach Incident
From that article.
‘Turgensec urged all Virgin Media customers who received a notice from the broadband provider to file a GDPR request for a full breakdown of what data of theirs was spilled. With 900,000 people affected.’
And,
Virgin Media added it is developing a tool to allow customers to search exactly what of their account information was exposed. ®
|
|
|
07-03-2020, 15:14
|
#36
|
The Dark Satanic Mills
Join Date: Dec 2003
Location: floating in the ether
Posts: 12,032
|
Re: Data Breach Incident
Quote:
Originally Posted by SnoopZ
Just got the email, bollocks to Virginmedia not happy.
|
The information gleamed is no more than you can get from the phone book, apart from emails that people give out freely to just about anybody and anyone.
__________________
The wheel's still turning but the hamsters dead.
|
|
|
07-03-2020, 19:11
|
#37
|
cf.mega poster
Join Date: Mar 2012
Posts: 4,096
|
Re: Data Breach Incident
Quote:
Originally Posted by Pierre
The information gleamed is no more than you can get from the phone book, apart from emails that people give out freely to just about anybody and anyone.
|
So you can get internet sites that you have visited from the phone book?
|
|
|
07-03-2020, 19:35
|
#38
|
The Dark Satanic Mills
Join Date: Dec 2003
Location: floating in the ether
Posts: 12,032
|
Re: Data Breach Incident
Quote:
Originally Posted by Mad Max
So you can get internet sites that you have visited from the phone book?
|
As far as I am aware your browsing history was not at risk, unless you know otherwise?
__________________
The wheel's still turning but the hamsters dead.
|
|
|
07-03-2020, 23:23
|
#39
|
a giant headend
Join Date: Jan 2011
Location: Liverpool
Posts: 1,166
|
Re: Data Breach Incident
Quote:
Originally Posted by Paul
Good, its not their job to force ridiculous passwords on people.
|
What?
It bloody well is!
|
|
|
08-03-2020, 09:39
|
#40
|
cf.addict
Join Date: May 2012
Location: Farnborough, Hampshire
Age: 42
Services: 500Mb Hyperoptic, Sky Signature with HD, UHD and Ultimate On Demand
Posts: 225
|
Re: Data Breach Incident
Quote:
Originally Posted by Skie
|
I agree, VM's password policy is a bit wanting, in fact it seems everything they do in terms of security is wanting. Given this is a breach of GDPR I hope the fine they will eventually get will get them wake up and get their systems in order, there is zero excuse for it and a culture change is needed.
If I did something like this at my place I'd be fired thus take security very seriously. I'm an ex-VM customer (left July 2019) and sent a GDPR request myself about my own data they could still have.
Last edited by StevenNT; 08-03-2020 at 09:50.
|
|
|
08-03-2020, 18:40
|
#41
|
Dr Pepper Addict
Cable Forum Team
Join Date: Oct 2003
Location: Nottingham
Age: 61
Services: Flextel SIP : Sky Mobile : Sky Q TV : VM BB (1000 Mbps) : Aquiss FTTP (330 Mbps)
Posts: 27,709
|
Re: Data Breach Incident
Quote:
Originally Posted by Skie
|
No idea what that link is supposed to show, but no, its not - its your responsibility.
__________________
Baby, I was born this way.
|
|
|
08-03-2020, 20:42
|
#42
|
cf.addict
Join Date: May 2012
Location: Farnborough, Hampshire
Age: 42
Services: 500Mb Hyperoptic, Sky Signature with HD, UHD and Ultimate On Demand
Posts: 225
|
Re: Data Breach Incident
Quote:
Originally Posted by Paul
No idea what that link is supposed to show, but no, its not - its your responsibility.
|
Virgin's policy in several areas is rather wanting and only limiting users to 10 characters at most and not even allowing punctuation marks is ridiculous in this day in age. So Virgin have an element of responsibility to allow a decent password makeup also but to me it sounds like your blaming the end user entirely on password policy.
It would be good to allow users to set more secure passwords without Virgin being silly and saying no you can't have x or y in a password.
Maybe the GDPR fine they will eventually face will force them to rethink their practices.
|
|
|
08-03-2020, 20:55
|
#43
|
FORMER Virgin Media Staff
Join Date: Dec 2010
Location: Warrington
Posts: 4,737
|
Re: Data Breach Incident
Quote:
Originally Posted by Paul
Good, its not their job to force ridiculous passwords on people.
|
Nobody's asking them to force ridiculous passwords on people, but it's irresponsible for them to limit your potential password strength as well. The issue isn't that Virgin doesn't mandate a stronger password, it's that you don't even have the option to use one if you want.
Quote:
Originally Posted by Pierre
The information gleamed is no more than you can get from the phone book, apart from emails that people give out freely to just about anybody and anyone.
|
This is not true. It also listed what websites people had asked to block and unblock, which is definitely information that could be used to blackmail or scam the customer.
Imagine someone gets a phone call from "tech support" saying they caught a virus from <some porn website that they've definitely been on>. That's not good at all.
Even if it was "just" information you'd get from a phone book, many people are ex-directory for a reason and privacy is a right that Virgin has failed to protect.
|
|
|
08-03-2020, 22:58
|
#44
|
a giant headend
Join Date: Jan 2011
Location: Liverpool
Posts: 1,166
|
Re: Data Breach Incident
There was a spate of phishing/scam emails not too long ago where people were receiving blackmail emails, basically "we know you visited greasygrannies.com and will make this public knowledge if you dont pay us £1k in bitcoin".
Whilst it was just a scam and the websites weren't actually visited, imagine those guys actually got hold of this database: they'd know what sites you'd submitted and could make fairly accurate threats and possibly even follow through on them. The original attempt was just a mass spam attempt to hopefully get a small number of fools, but actually being able to target people...
|
|
|
08-03-2020, 23:15
|
#45
|
cf.mega poster
Join Date: Jul 2004
Location: At the Leaving door
Posts: 4,050
|
Re: Data Breach Incident
GreasyGrannies.com . . it used to be ok, but since I got this new 4K monitor it just doesn't look so good
|
|
|
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
|
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
All times are GMT +1. The time now is 23:16.
|