Skip to main content

140,000 KPN ADSL customers still using default password

posted onJuly 6, 2012
by l33tdawg

In Holland, a major ISP known as KPN has found a major security flaw for their customers. It seems that the Usernames were easy to guess because it was comprised of the persons zipcode + street address. All customers have had the same default password of 'welkom01'.

On a customers account management page there is an option to change the password, but up to 140,000 users never did. Anyone with minimal effort could log onto the account management of business ADSL subscribers.

The account management page could have given attackers access to peoples accounts and the abilities to change things in such a way that it was nearly impossible for the real owner to fix. Once inside they could find bank account and credit card numbers.

Source

Tags

Netherlands Security KPN Industry News

You May Also Like

Recent News

Friday, November 29th

Tuesday, November 19th

Friday, November 8th

Friday, November 1st

Tuesday, July 9th

Wednesday, July 3rd

Friday, June 28th

Thursday, June 27th

Thursday, June 13th

Wednesday, June 12th

Tuesday, June 11th