TalkTalk customers remain at serious risk of cyber-attacks due to gaping security holes in the company’s online services, weeks after the high-profile hack that saw the personal details of 157,000 customers stolen. Security researchers say they have uncovered a series of vulnerabilities on TalkTalk’s website and email services that could allow hackers to steal email address, password and financial data due to basic oversights. In the wake of the October attack that saw bank account numbers, credit card details and other details stolen, the broadband operator says it has taken major steps to improve security in an attempt to restore its reputation. However, several parts of its website remain unencrypted, as do parts of its email services, according to Codified Security, a mobile cybersecurity testing firm.
View full story
ORIGINAL SOURCE: The Daily Telegraph