One or more hackers have at KPN compromised. Priv lwa of customers ‘ data were accessible, it confirms the provider. The hacker had a week after the hack was discovered, still access. However, there is no evidence that data has been copied.
One or more hackers have the network of the telecom and internet service provider know to penetrate, though it is unclear how many servers are affected. KPN speaks about ‘single server domain’. “KPN has immediately taken measures to up the data to protect our clients and to the services without interruption and to stay safe take care”, says KPN.
According to spokesman Patrick Mikkelsen of the provider could be the hacker of customer data. It included names and addresses, telephone numbers and bank account numbers. “Research has not shown that the data are misused or copied,” he says.
When the hack was discovered, on 20 January, was tried for the leak to be sealed. At that time, the hacker probably already have a few days access. From further examination on 27 January, however, showed that the hacker still had access to. “But he has in that week, no activity shown,” says Mikkelsen. According to Mikkelsen was the technique that the hacker used ‘so ingenious’ that the problems of the hack not successful.
Together with ict-security, Fox-IT, the threat is resolved, the company said. Where the hackers were looking for and what they have found, is unclear. Also, how the hack has taken place, is unknown. The company is working with the police to solve the case.
In november ceased KPN may temporarily suspend the issuance of Getronics-ssl certificates after possible suspicious traces were found. Also, the website of KPN subsidiary Gemnet, that the application of ssl certificates for the Dutch government supports, temporarily taken offline.
Update, 17:05: The piece was updated with information from an interview with KPN.