A 17 year old hacker has admitted offences related to the massive data breach at TalkTalk last year.
According to the BBC, the boy told Norwich Youth Court he was just “showing off” and used tool software to identify vulnerabilities on the TalkTalk website.
He pleaded guilty to seven charges under the computer Misuse Act and will be sentenced on 13 December.
The technical weaknesses in TalkTalk’s security meant that between 15 and 21 October 2015, a hacker was able exploit holes in the system and swipe data, such as the names, addresses, date of birth and phone numbers of 156,959 customers.
The attacker also managed to gain access to the bank account details and sort codes of 15,656 customers, making the data leak that bit more severe.
The attack on TalkTalk happened when data was accesses through the hacking of three vulnerable webpages the company inherited from Tiscali’s UK business in 2009. TalkTalk’s failure to scan this infrastructure to find security vulnerabilities was what caused the fine.
TalkTalk was apparently not aware of the fact the underlying database to the webpages was outdated and lacked support from its vendor. As such, TalkTalk was not aware of a bug, which has a fix for it, was lying amongst the infrastructure.
“In spite of its expertise and resources, when it came to the basic principles of cyber-security, TalkTalk was found wanting,” Information Commissioner Elizabeth Denham said earlier this month.
The episode led to MPs to recommend greater powers for the ICO. However the reputational damage and losses directly caused by the company were arguably greater. It is understood the incident cost TalkTalk £60 million and led to 101,000 customers to leave. It has since recovered.
Suspended prison sentence for Craig Wright for “flagrant breach” of court order, after his false…
Cash-strapped south American country agrees to sell or discontinue its national Bitcoin wallet after signing…
Google's change will allow advertisers to track customers' digital “fingerprints”, but UK data protection watchdog…
Welcome to Silicon In Focus Podcast: Tech in 2025! Join Steven Webb, UK Chief Technology…
European Commission publishes preliminary instructions to Apple on how to open up iOS to rivals,…
San Francisco jury finds Nima Momeni guilty of second-degree murder of Cash App founder Bob…