Anyone with TalkTalk!! :(

I had some advertising bumf in the post from TalkTalk today. Guess where it went? :D
 
ZoneV said:
I had some advertising bumf in the post from TalkTalk today. Guess where it went? :D
Click to expand...

Looks like TT & VW will have their credibility held in question for a long time - mud sticks.
 
Nod said:
I managed to get into www.talktalk.ru earlier. Filled in the personal details along with my bank PIN and security answers. Just waiting for them to get back to me. Not sure why they needed all that stuff - I'm with EE...
Click to expand...
I got them today thank you got the VW diesel only thing is the exhaust seems stinky you won't mind if I get a Ferrari instead would you :ROFLMAO:
 
Saw a Ferrari at the fuel station the other day - oddly, it didn't sound like a bag of bolts at tickover! Turns out it was an MR2 with a body kit.
 
The account section is still not up and running (n)

My e.mail have been running slow again,losing my faith in Talk Talk more & more everyday :(
 
Last edited:
TalkTalk's 'myaccount' is now up and running in a temporary lite format.
 
gramps said:
Truth is that no website appears currently to be able to prevent the hacking of personal data ... whoever it is, TalkTalk, Lastpass, Adobe, The Pentagon, CNET, Reuters, The Sun, Sunday Times, US Navy ... the list is endless.
We all get enraged with companies when this sort of thing happens but it's pointless ... nobody has such a 'bomb-proof' system that interacts with anyone else!
Click to expand...

It was an SQL Injection attack, the fact that this can happen to a major company in 2015 is quite frankly ridiculous. I find it hard to actually call it hacking! It's just putting an SQL query in the search bar on a website and it dumping the contents of all it's databases. Horrendous security flaw in this day and age.

Essentially, this is what happened:

exploits_of_a_mom.png
 
Last edited by a moderator:
KitsuneAndy said:
It was an SQL Injection attack, the fact that this can happen to a major company in 2015 is quite frankly ridiculous. I find it hard to actually call it hacking! It's just putting an SQL query in the search bar on a website and it dumping the contents of all it's databases. Horrendous security flaw in this day and age.

Essentially, this is what happened:

exploits_of_a_mom.png
Click to expand...

Thanks, I missed the official findings on the direct cause of the problem, do you have a link?
 
I have been with Talktalk for some time and unfortunately continued my contract only a few months ago!! I for one dont want to stay with them!!
 
To be caught out with a SQL injection attack in 2015 is ridiculous. You can't even really call it hacking!
gramps said:
Thanks, I missed the official findings on the direct cause of the problem, do you have a link?
Click to expand...


El Reg is generally the best place for tech news.

http://www.theregister.co.uk/2015/10/26/talk_talk_arrest/

http://www.theregister.co.uk/2015/11/03/talktalk_incident_management_review/?page=1

There was a blog post somewhere that showed screenshots from a security researcher who'd actually notified them that their security was hopeless a while back, I'll try to find the link when I have time.
 
KitsuneAndy said:
To be caught out with a SQL injection attack in 2015 is ridiculous. You can't even really call it hacking!



El Reg is generally the best place for tech news.

http://www.theregister.co.uk/2015/10/26/talk_talk_arrest/

http://www.theregister.co.uk/2015/11/03/talktalk_incident_management_review/?page=1

There was a blog post somewhere that showed screenshots from a security researcher who'd actually notified them that their security was hopeless a while back, I'll try to find the link when I have time.
Click to expand...

which was probably accessed using a primitive SQL injection attack.
Click to expand...

Anything a teensy bit more official and authoritative would be appreciated :)
 
gramps said:
Anything a teensy bit more official and authoritative would be appreciated :)
Click to expand...

Well, talk talk have said it was a DDOS attack, Which isn't technically possible.

Oh, and referred to it as a "Sequential Attack" http://www.theregister.co.uk/2015/10/26/talktalk_sequential_attack/

All the industry experts though, seem to be of the opinion it was an SQL injection attack - http://www.engadget.com/2015/10/23/talktalk-hack-explainer/ the DDOS attack was possibly a distraction so that they didn't notice the data dump straight away.

Also worth noting, that encryption might not have helped if this is the case, the encryption would help if someone actually stole the database files, but not if they used a query to extract the information from the database.
 
There's been an awful lot of speculation on both sides, hence my reluctance to simply accept what someone 'thinks'.
Also having administered a server myself as well as using a server someone else is administering, I know that things are never as simple as 'it's my fault if something goes wrong', there are lots of things impacting on the services you use.
Allegedly TalkTalk use external 'security advisors' and I would assume that, like many others, they would certainly be guided by their advice as well as their own 'in house' security.
It's easy to point the finger but as I said previously, there have been numerous companies and government agencies who have suffered data loss so it isn't just TalkTalk ... where they dip out is in being a popular target. :)
 
Just had another one of those "overseas" phone call by Talk Talk just now. My usual thing is to just cut them off on the spot and be getting on with the rest of the morning - but after their third attempt to contact me in the space of five minutes, that caller certainly had felt my wrath on this occasion.
 
Last edited:
border_all said:
If anyone does not know TalkTalk are offering a complimentary upgrade for users until the end of December after that you dip out.

Offers reflect what service you take and last about 3 - 12 months
Click to expand...
I wonder what they do for those who already have the top package. I think a phone call is in order :) thanks
 
dejongj said:
I wonder what they do for those who already have the top package. I think a phone call is in order :) thanks
Click to expand...

Well worth a phone call I would think. I was in a similar position with BT, having the top package, and they went through the usual "you could reduce the service etc" which I refused. I threw in a few alternate ISP's that I was considering and they soon came up with an almost 20% discount for the next year.
 
Hmmm so the upgrades are;

A free sim for 12 months with 100 mins, 250 sms and 200mb data. Funny, like we don't already have a mobile phone when we are on the top package. Further more there is no coverage where I live....

Or alternatively...

A broadband and wifi health check by a Brightsparks Engineer. Oh just for entertainment factor I would love that one. I wonder how he deals with the 4 wifi networks, the separate firewall, a proxy server, etc. That could be entertaining, but also a total waste of my time.

The upgrades aren't upgrades at all, they have nothing to do with the broadband service...
 
I picked free films for three months.
 
dejongj said:
I'm not being given that choice....Only the two above...
Click to expand...

I had your two and the films, as well as free sky channels and other channels ( I think 5 offers in all).

I suppose it just depends on what package you have.
 
Mikesphotaes said:
I had your two and the films, as well as free sky channels and other channels ( I think 5 offers in all).

I suppose it just depends on what package you have.
Click to expand...
Looking at their community site, it depends indeed on what you already have. They only offer you things you do not already have. So if you have already got the full package you are left with 'upgrades' that you didn't want in the first place....

I'm actually annoyed about this; especially as my broadband router is loosing speed again as well, that I will pen a letter to Dido....I won't go down with this ship. I won't put up my hands and surrender. I will not have a white flag about my door.
 
dejongj said:
Looking at their community site, it depends indeed on what you already have. They only offer you things you do not already have. So if you have already got the full package you are left with 'upgrades' that you didn't want in the first place....

I'm actually annoyed about this; especially as my broadband router is loosing speed again as well, that I will pen a letter to Dido....I won't go down with this ship. I won't put up my hands and surrender. I will not have a white flag about my door.
Click to expand...

Realistically the only thing left is a decent discount. But I'm confident you'll talk them round :D
 
Well I don't hope I have to resort to this path ...

Dear Dido, I wrote you but you still ain't callin'
I left my cell, my pager, and my home phone at the bottom
I sent two letters back in december
You must not have got 'em
It probably was a problem at the post office or somethin'

...
 
You must log in or register to reply here.
Back
Top