A group of hackers claims it easy to the network of KPN to be invaded by servers, outdated software turned. They would take customer data have captured, and also customers have been able to quit.
Last Wednesday, confirmed KPN that hackers have compromised and customer data were accessible. The carrier claimed that only dates as a name and address on demand, but a hacker who, together with others, the systems cracked would have said that much more was possible.
The collaborative group of hackers, with, among others, the Dutch and the Russians, would not specifically KPN have been attacked but have been looking for vulnerable systems, reports Nu.nl. On a server running on SunOS 5.8, and was used for the domain speedtest.wxs.nl, was a vulnerable and not updated system found.
Using an exploit would be the hackers in the internal network have managed to achieve to then passwords, loot, and other servers of KPN to crack. So they would have access to a management system for internet connections. In theory they would all KPN customers in the quarantine have been able to place or access the internet even completely shut down.
In contrast to what KPN announced, claims to be the hacker that the group also has managed to download. It would go to 16GB of information. The attackers would have the data, however, have been destroyed because they say that only vulnerabilities when the company wanted to demonstrate.
KPN would shortly after the discovery of the hack all the alarm bells are going to ring. It announced a ‘code red’, the highest alert in such incidents. KPN was particularly afraid that the hackers were able to use 112 to block to customers with a InternetPlusBellen subscription. The provider would have even considered this servers completely off.
From 27 January to 3 February would be more than a hundred people 24 hours a day to research have worked in which KPN assistance received from the National Cyber Security Center. Also, obsolete software updates are provided. KPN has reported to the Public Prosecutor and the incident also reported to the OPTA and the Ministry of Economic Affairs.