Four million Time Warner Cable records exposed in leak

Jon Howard
September 6, 2017

Details related to more than 4 million Time Warner Cable customers were exposed online in a major data breach, according to a report from Kromtech Security, but it was a partner of the USA cable operator, rather than TWC itself, that was at fault, according to the security export. Cybersecurity firm Kromtech Security Center discovered about 600GB of data from a range of companies associated with communications software company BroadSoft were left exposed in two AWS S3 buckets.

The breach was eventually linked to BroadSoft Inc, a communications company that partners with service providers, including AT&T (NYSE:) and TWC, Gizmodo said. The leaked information regarded 4 million of TWC customers.

Sensitive information about more than four million users of an app created by Time Warner Cable has been accidentally exposed online.

Millions of records containing the personal details of Time Warner Cable (TWC) customers have been discovered in a publicly accessible storage repository. There were also some internal company records like credentials for external systems, internal emails, and SQL database dumps.

The breached files, it said, were discovered last week by Kromtech Security while its researchers were investigating an unrelated breach at World Wrestling Entertainment.

The S3 buckets were accidentally configured to allow public access, potentially allowing anyone with the URL to access and download the sensitive data.

Florida's defense picks 2 for TDs, then blocks punt against MI
The lack of playmakers showed on offense for the Gators , as their quarterbacks were unable to sustain drives throughout the game. I credit McElwain for his willingness to speak honestly, but the coach needs to take a long look at himself in the mirror.

Kromtech added that most of the exposed data appeared to be related to Time Warner Cable, Bright House Networks and AMC Network. Both BroadSoft and Charter say they're investigating and will take extra steps to address the situation if necessary.

Verizon isn't the only big U.S. telecom whose corporate ally left customer data out in the open.

"We encourage customers who used the MyTWC app to change their user names and passwords", Charter stated.

In a statement, Broadsoft said no bank, credit card or other personal data about end users was exposed in the breach.

Charter Communications - which acquired Time Warner Cable in 2016 and renamed it as Spectrum - said the exposed information was immediately removed after the discovery and the incident is now being investigated along with BroadSoft. "We apologise for the frustration and anxiety this causes, and will communicate directly to customers if their information was involved in this incident".

Broadsoft did not immediately respond to a request for comment.

Other reports by PlayStation Move reviews

Discuss This Article