Replace: Added provider assertion on the finish of the article.
UK telecommunications firm TalkTalk is investigating a third-party provider data breach after a menace actor started promoting alleged buyer information on a hacking discussion board.
“As a part of our common security monitoring, given our ongoing give attention to defending prospects’ private information, we had been made conscious of surprising entry to, and misuse of, certainly one of our third-party provider’s techniques, nevertheless, no billing or monetary info was saved on this technique,” TalkTalk instructed BleepingComputer.
“Our Safety Incident Response staff are persevering with to work with the provider relating to this matter and protecting containment steps had been taken instantly.”
“Our investigations are ongoing, nevertheless we are able to verify that the variety of potential prospects referred to in sure on-line posts is wholly inaccurate and really considerably overstated.”
This assertion comes after somebody named “b0nd” started promoting what they declare is TalkTalk buyer information on a hacking discussion board that was allegedly stolen in a January 2025 data breach.
“Because the title says right this moment we are going to record on the market a big data breach involving TalkTalk. This breach came about January 2025 and impacts 18,839,551 present and former prospects.” reads the submit to a hacking discussion board.
Supply: BleepingComputer
The menace actor additionally shared a pattern of the information, which incorporates the subscriber’s title, e mail, last-used IP deal with, enterprise telephone quantity, and residential telephone quantity.
Whereas the discussion board submit says the stolen information comprises details about virtually 18.9 million present and former TalkTalk prospects, the corporate doesn’t have practically that variety of subscribers, placing the authenticity of the breach doubtful.
Moreover, the screenshots shared by the menace actor point out that the information was probably stolen from the Ascendon SaaS platform moderately than instantly from TalkTalk.
CSG Ascendon is a subscription administration platform that TalkTalk has traditionally used as a part of its operations.
In 2015, TalkTalk suffered a data breach the place hackers accessed the private particulars of over 150,000 prospects. The incident led to a £400,000 high quality by the UK Data Commissioner’s Workplace.
Replace 1/26/25: CSG confirmed that the information originated from their platform however stated that they didn’t undergo a breach of their techniques and it solely impacted one buyer.
“On Jan. 21, 2025, CSG realized that an exterior occasion gained unauthorized entry to a single supplier’s information residing on a CSG platform,” CSG instructed BleepingComputer.
“We’ve no proof that CSG’s applied sciences and techniques had been compromised or that CSG was the reason for the surprising entry to the information. CSG offered fast containment and is actively supporting our buyer.”
BleepingComputer requested whether or not the menace actor breached TalkTalk’s account by compromised credentials however has not heard again right now.
