Tuesday, 24 May 2016

TalkTalk Hacked and The Database Is Decrypted And In The Wild?

Anyone with TalkTalk needs to MAKE SURE they changed all Their log in details for TalkTalk AND    Anything Anywhere else.. that uses the same Email, or home address of phone number and the password.
"AND LOOK OUT FOR FAKE PHONE CALLS THAT HAVE YOUR DETAILS TO QUOTE" 

People may remember talk talk said they had been hacked but didn't know the extent
on Wednesday the 21st of October 2015..  Police came on board on the 22nd.



Then they said to everyone the system has been taken offline and when it returns people will be requested to  "change your password" when the sites back up..
 
Then they told everyone on facebook that its fine and NOTHING WAS TAKEN... They lied.. all posts where deleted BUT they had already sent out this email

No banking details where taken no my account passwords had been accessed, yet they took the system off line (because they couldn't tell if it was safe to be online.. clearly!!)

For a society that needs telling a packet of Pnuts MIGHT contain nuts.. It still perplexes me they didn't really state  IF YOUR PASSWORD AND EMAIL FOR OUR SITE IS USED ON OTHER SITES THEN CHANGE IT THEIR TOO..

I clearly remember the Farce because they said Nothing Was Taken & yet they recomended changing your password.. We Know.. We Are Sure.. But yet.. just in case?  wtaf lol

The last email i got regarding the sordid fkn affair was this one A CONFIRMATION...


So much for nothing taken.. FKN LOVE THE WAY IT SAYS    NO LESS  (like thats not bad)
lets read that with out the no less and say AT LEAST

Hackers Obtained
at least 21,000 Bank account numbers and sort codes
at least 28,000 Credit card and debit card details
at least 15,000 Dates of birth
at least 1.2 Million email addresses, Names and phone numbers
How do them figures even add up?

Clearly they have name, address, email, password, phone number, date of birth, bank account sort code , card numbers issue, expiry, security code for around 3+ Million people...
 
This would be why the data base encryption has only taken about 7 months for them to crack rather than 4 or 5 years.. So many must of been working on it because they must know how much it was worth.. its a telecommunications encrypted database and its worth noting these are NOT english people making the phone calls...

Bogus calls are on the rise.. DIRECT CALLS to Talk Talk customers.. The caller knows your Number.. Knows your a Customer & knows your name & address.. This means YES at least ONE database was stolen AND HAS NOW BEEN Decrypted OR at least partially decrypted regardless of the time line above..

They EITHER
A) haven't got full bank details
B) They have yet to break that encryption.. 
C) them red numbers are in a separate file, yet to be decrypted 
clearly between 1.. 2 even 10 systems (they have your Full A/C number or how the machine bill you if it cant access them numbers.. 

You CAN split details between databases and encrypt them differently.. But how many databases where stolen???.. Either way the ONSLAUGHT of their cock up in October 2015 is showing its nasty head as of the 23rd of May 2016 & the talktalk website has done sod all to inform people...

As talk talk don't have a clue what's really gone on.. It seams fruitless to even ask them..
"but how did THEY get talktalk customers User Account Numbers to quote on the call????"
 .. clearly the database..
ALSO have any other talk talk customers noticed their ISP if you check on speedtest.net is currently showing talk talk customers ISP as Tiscali who ever they are.. Why is my ISP no longer named as TalkTalk... VERY STRANGE???

Talk Talks website today seams more concerned in Placing adverts for AOL than WARNING its customers...

Talk Talk Site 24th May 2016
The Guardian has reported on it today here, really does mean the database is in the wild.. OTHERWISE how would they know your name.. your address.. your phone number AND that your specifically with TalkTalk...  to convenient as far as i'm concerned..

Is this why LinkedIn was hacked too... Was a TalkTalk admin moonlighting at linkedin using the same details on their LinkedIn admin account?  then hackers using their details stolen from TalkTalk allowed them access to a LinkedIn admin panel?

its a valid question isn't it?...

Anyways here is some other people talking about it from Yesterday before the Guardian even picked up on it..




I can also confirm Me and my Girlfriend have both been having random phone calls (talk talk have both our Unlisted Mobile numbers) Calls regarding a car accident claim.. These calls started approx 4 maybe 5 days ago.. They clearly got the first fkn database to open a few weeks ago and it was the mobile phone database which is a direct attack (numbers are numbers only no char) So you no its a dictionary base with context, IE the content should nearly all be the same length.. its more complex than that by hand. But essentially numbers that are defined by the system are easier to extract as there is no real quibble on the Characters.   If its Land Lines in the uk then its looking for sets of  4..  3... 4  digits.. So you can define that as 4,3,4 or 11.. It clearly makes it faster knowing your only looking for Numbers and not symbols or letters.. land line wise you can say the string is 11.. No more No less..  ALSO.. Once popped open.. you know what the encryption was.. what company made it and so on.. that's then used to help to pop the rest.. Its a paper trail & time.. The more details people give over the phone, the more they have to look for inside the database.. People are currently Helping these Hackers add more information to what ever they are using to dissect more info from behind the encrypted code.

Anyways.. talktalk.. ya clearly fkn idiots, ya website needs a BIG A$$ WARNING..
about scam calls.. and  CHANGING passwords  ON OTHER SITES... and you need to get btOpenreach guys to stop causing faults to get paid to come bk out.. their scammin you & sky with the building i live in and they've been told be my AND other residents.. yet it still goes on...

You need to WARN CUSTOMERS ASAP..  Hell.. even if you used a different Email on Other sites.. yet same password.. they'll get in at some stage.. because your name.. your D.O.B.. your location...  and other info will be in big fat Dictionary text files for dictionary based attacks.
These people fire millions of passwords and millions of email addresses, each lock is like a pin board..

Remember Hotmail, Google, Yahoo accounts and Facebook accounts.. loads  got hacked & spammed about a year "after eBay was hacked".. They be like don't panic.. paypal is a separate system it wasn't compromised.. yet their in ya email.. visit paypal.. hit forgot password.. email reset link..  All sites clearly need different passwords.. ALL of them..

THE SYSTEM NEEDS TO CHANGE AND CHANGE FAST..

this is a wild rant, probably grammar like im 5.. i don't care.. read it.. share it.. this is about TIME.. not grammar.. the message is important.. IF you ever been with TalkTalk (or Virgin Media)  because WHO KNOWS  exactly what Information Virgin passed to talk talk..
I was with virgin media on adsl.. they handed ME and my account to TalkTalk and did away with ADSL...

PLEASE REMEMBER:
They say the hack was on the 21st of October 2015, police got involved on the 22nd, between the faffing & the lies tryna cover their a$$es THIS WHOLE BLOG POST APPLIES TO EVERY CUSTOMER RELATING TO THESE SERVICES

TalkTalk customer Prior to November 2015
Virgin Media "National ADSL" customer Prior to November 2015

WHAT TO EXPECT:

Well first things first, as i said i gather they popped the Land Line database first, thats clearly the easiest as you no its 11 Numbers no more no less & no other characters.
So they'll ring around phishing for missing bank details AND any who know how its really done will want you to confirm your post code & your email (this could help them to unlock 2 or more other databases by knowing more of what should be inside)

Now they have your email.. they can spam that.. once they get your password a bot or an app of some kind will Log in and download your actual address book, another bot or app may hit sites & select forgot password and fire the email in. The account will get multiple emails from sites giving password reset info and options.. doors wide open now (secret words used as recovery options and all kinds of info that again may help decrypt whats inside a database) Some will just fire Spam to everyone in your address book (so it looks like u sent it) they may just use a bogus address or one from ur book and send it from them.. suddenly they think they have been hacked as people got spam off them, yet the spam was faked.

Some people can have the same password for 2 or 3 of thier email addresses, and they assume the hacker only have one email to attack.. But so many people get their address book robbed and spam crap that most our emails are on a list somewhere (taken from our porn surfing internet pals) and all these lists have new passwords thrown at them every day.. its automated..

Hackers will SELL chunks of data to random people.. depending on how skilled these people buying it are will depend on how much information they manage to gather before you become aware its a hoax call or hoax email. BUT IT DOESN'T MATTER...

Every bit of Info you confirm over the phone is information to look for Inside a stolen encrypted file, more 001010101 you can turn into Text then the faster the whole thing will flop open..

HOW TO CATCH THEM.. MAYBE LEAD TO MORE ARRESTS...

the Classic Automated call..
Hello we are calling about your recent car accident, any time during that call if you just say no it switches to a 2nd recording saying sorry for calling we'll take your number off our system.. LIE.. your umber will go onto a 2nd list.. ppi.. late flight.. what ever.. If you say YES how ever.. it may jump to a live operator in a random country.. thing is this is traceable..  Everything thats gone on "with TalkTalks database" has been Bought.. Some ones selling it & marketing companies are using it to pass you to a real company that handles claims.. Track the automated calls, Track where the call is bounced too.. Track the Expenses regarding the purchase of information being used by the place making the calls. Who paid them.. Who overhaul profits from it. IF at least 100+ people in call centres right down the chain aren't questioned on where they got all these numbers then Someone is in on it right?.. This is regardless of the people who phone and Pretend to be from talktalk..  THIS Apparently Unrelated...   "have u been in a car accident phone calls"  HAVE  risen in the last 1 to 2 weeks.
(its clearly Related and info IE "phone numbers" have already been Sold....)
and thats BEFORE the bogus talktalk calls begun.. someone greedy dipped it early expecting not to get caught or noticed.. but clearly who ya dipped it for sold it on and on and on.. the calls became More Frequent and wide spread.. even to a number i can confirm only talktalk and my landlord have.. so one of ems guilty of that breach of information.. Anyways.. go fkn track the influx of cold calls.. its well spiked.. and thats the day the first database popped.. clearly ffs  : /
People on facebook note the Number that called AND a second number given for verification.. has the Law seized them devices yet?  after all they are MANUALLY operated.. you really think their cell to cell?,  i actually doubt it.. we got fraud possibly leading to larger crimes.

The Ramifications are endless and TalkTalk.. (between this lack of public knowledge and washing their hands of the hack.. and the bt openreach problems) this is a Sham.. a diabolical way to run a company...

Someone needs to start making dating profiles on varied sites & live out your ideal fantasy in the About Me Box.. and start droppin these phone numbers in the profiles.. It'll make dialling out hell... 

A mate rang me today about a pc being locked out after a phone call to a talk talk advisor who became abusive and locked them out.. then i looked on FB to see people chatting about this  Yesterday.. saw the Guardian link Today when i googled.. and as a customer i remember the 2015 chaos.. and 2 & 2 makes 4.. unless ya work for talktalk... someone at talk talk should be reading this Guiding the police with Information.. if Customers have no issues with Incoming call lists going to the police.. they could have at least 30 people in custody.. or as talktalk say.. no less than 30

WHAT EVER HAPPENS...
When 1000's of people   ON TALKTALK   get a call from someone stating their from talktalk
then its clear TalkTalk needs to accept responsibility that "who ever is ringing" got the numbers during the hack and/or work with police, customers.. records.. track it back..
Money taken It funds terrorism, illegal migration amongst other crap.. like DEATH...

Everyone at talktalk be like unplug it.. if its got a wire.. pull it.. we duno wtf is broke and what's not.. 1000's with no net.. thousands being ripped off.. hell im currently plugged into Tiscali for some reason and what they got to say...


MySpace has also recently been hacked, so in a few months that database will be out their too.. its like wtf..

No comments:

Post a Comment

Please keep comments clean..