Menu
Reply
Highlighted
  • 2.33K
  • 102
  • 158
Forum Team
Forum Team
653 Views
Message 71 of 165
Flag for a moderator

Re: Virgin Media's data incident

Thanks for your posts over the course of the day. 

 

We’re sorry this has happened. To reassure our customers, the database didn’t include financial details or passwords. We’re contacting affected customers in the next 24-48 hours. There’s more info here: www.virginmedia.com/data

 

We’ve kept the Information Commissioner’s Office fully up to date on this incident and we will continue to advise our customers, that they should be vigilant and cautious when clicking any unknown links or giving their details to an unverified or unknown party. We’ll write again to any affected people to confirm what specific data of theirs was made public, and provide any necessary guidance. For now:

 

·    People can and should report any phishing attempts to phishing@virginmedia.com (we provide advice on how to keep safe here)

 

·    More information about current phishing scams is available on our Community Forum: http://community.virginmedia.com/t5/Security-matters/bd-p/Internet_Security

 

·    Virgin Media will never call and ask for bank details or account information – if any customers receive these calls, we urge you to not give any details, hang up, and report the incident to Action Fraud
 

Kindest regards,

 

David_Bn

0 Kudos
Reply
Highlighted
  • 4.25K
  • 279
  • 1.39K
Community elder
630 Views
Message 72 of 165
Flag for a moderator

Re: Virgin Media's data incident

Action Fraud will not accept reports from anybody resident in Scotland.

Incidents there should be reported directly to Police Scotland on the 101 telephone number.

(An already inadequate service, made worse by having to deal with fraud and cyber-crime reporting.)

 

 

 

 




It's What I Do.
I Drink and I
Remember Things.
0 Kudos
Reply
Highlighted
  • 4.25K
  • 279
  • 1.39K
Community elder
599 Views
Message 73 of 165
Flag for a moderator

Re: Virgin Media's data incident

https://www.bbc.co.uk/news/technology

However, researchers at cyber-security firm TurgenSec - which found the database - said it contained more intimate details.

"Stating to their customers that there was only a breach of 'limited contact information' is from our perspective understating the matter potentially to the point of being disingenuous," one researcher told the BBC.

"These highly sensitive details could be used by cyber-criminals to boost the chances of extorting money from victims."

Virgin Media confirmed that the database contained details of about 1,100 customers who had used an online form to ask for a particular website to be blocked or unblocked.

A representative of TurgenSec said Virgin Media's security had been far from adequate.

"The information was in plain text and unencrypted, which meant anyone browsing the internet could clearly view and potentially download all of this data without needing any specialised equipment, tools, or hacking techniques," they told the BBC.




It's What I Do.
I Drink and I
Remember Things.
Highlighted
  • 72
  • 0
  • 15
Dialled in
584 Views
Message 74 of 165
Flag for a moderator

Re: Virgin Media's data incident

Funny how the BBC can tell you more about it than the company that leaked your data. And the level of data is more than VM claimed was leaked.

"Virgin Media confirmed that the database contained details of about 1,100 customers who had used an online form to ask for a particular website to be blocked or unblocked."

I was contacted about the leak and I have never used such a service so there must be more data lost than that one file. And the best part is...

"The information was in plain text and unencrypted, which meant anyone browsing the internet could clearly view and potentially download all of this data without needing any specialised equipment, tools, or hacking techniques," they told the BBC.

Virgin Media, which is owned by US cable group Liberty Global, said it took security very seriously.

Take security seriously? This was not a hack you openly admit you leaked the data. 🤦‍♂️😂

Highlighted
  • 3.66K
  • 170
  • 289
Forum Team
Forum Team
582 Views
Message 75 of 165
Flag for a moderator

Re: 5 Mar data breach

Hi kjbu,

 

We’re sorry this has happened. To reassure you, the database didn’t include financial details or passwords. We’re contacting affected customers in the next 24-48 hours. There’s more info here: www.virginmedia.com/data

 

Kind regards,

John_GS
Forum Team

Need a helpful hand to show you how to make a payment? Check out our guide - "How to pay my Virgin Media bill"

0 Kudos
Reply
Highlighted
  • 19
  • 0
  • 21
On our wavelength
578 Views
Message 76 of 165
Flag for a moderator

Re: 5 Mar data breach

Forgive me if I take anything VM are claiming at the moment with a large pinch of salt.  No mention of this in your email was there?

"However, researchers at cyber-security firm TurgenSec - which found the database - said it contained more intimate details.

"Stating to their customers that there was only a breach of 'limited contact information' is from our perspective understating the matter potentially to the point of being disingenuous," one researcher told the BBC."
https://www.bbc.com/news/technology-51768577

0 Kudos
Reply
Highlighted
  • 1.42K
  • 99
  • 132
Forum Team
Forum Team
551 Views
Message 77 of 165
Flag for a moderator

Re: Data Breach -What information has actually been accessed.

Hi Sambasong,

 

Thanks for getting in touch with us sambasong. The database involved was used for marketing campaigns, and to help us collect information from some of the forms you fill out on our website.

 

The data accessed includes names, home and email addresses, phone numbers and,in some cases,Virgin Media customer account numbers. While this maybe unsettling we want to reassure you that no financial or password information was stored in this database. 

 

 

Regards

Steven_L

 

 

0 Kudos
Reply
Highlighted
  • 27
  • 0
  • 22
On our wavelength
549 Views
Message 78 of 165
Flag for a moderator

Re: Virgin Media's data incident

So within 24 hours we've gone from the attitude of "Yeah but not password or financial details were leaked so that's not that bad, stop moaning" from VM to more details showing it's more detailed than what's stated in the email!

Also, the attitude of "Oh we don't think there are any grounds for compensation" simply isn't good enough! I WILL be looking for compensation!

The fact is, this is not just a huge data breach but it's being badly handled by VM! The DB was left open for a year, it was found last Friday and it took almost a week to tell your customers! There should have been enough information found within 48 hours and within 72 hours us, as paying customers, should have been told!

Am I angry? Of course I am, my personal data has been leaked because of sheer incompetence! Who has a DB containing personal information without any security?? And no encryption!!

It's like we're being treated as moaners and whiners and how dare we seek more details and compensation.

Please, VM employees, stop playing this down! Enough personal data has been leaked into the wild for criminals to enjoy an identity theft spree!

Daz

Highlighted
  • 11
  • 0
  • 1
Tuning in
532 Views
Message 79 of 165
Flag for a moderator

Re: Virgin Media's data incident

Does the breech also include details of ex-customers? Since I no longer have the Blueyonder e-mail account that died with my VM contract (because of a house move) it's not entirely clear I would be informed of any personal data being compromised.....

0 Kudos
Reply
Highlighted
  • 4.13K
  • 449
  • 1.52K
Very Insightful Person
Very Insightful Person
527 Views
Message 80 of 165
Flag for a moderator

Re: Virgin Media's data incident

Take the time to read TurgSec's Virgin Media Disclosure Statement as Virgin Media's statement lacked candour (IMHO).