320,000 Customer Passwords Stolen from Time Warner

January 11, 2016, Written By Lynn Oldshue
SANTA CLARITA CA/USA - DECEMBER 6 2014: Time Warner Cable office building. Time Warner is an American cable telecommunications company is the second largest cable company in the U.S.

Last week, Time Warner announced that the email addresses and passwords of nearly 320,000 subscribers may have been stolen. The FBI notified Time Warner of the data theft, and the company does not yet know if any other information has been compromised.

The company has found no proof that its systems were breached. Instead, they believe this leak may have resulted from attacks on companies that store Time Warner customer information. Malware downloaded by customers from phishing attacks may also be to blame.

Customers are being notified via email and direct mail to change their passwords.

“We’re contacting customers who could potentially be affected so they can take precautions, including changing their password to a strong, unique alternative,” a TWC spokesman said. “Additionally, through our website we provide several tips for how to navigate the Web more carefully and how to avoid phishing schemes.”

The attack seems to center on subscribers to Time Warner’s Roadrunner service, so customers with email addresses ending in rr.com are most at risk, according to NBC News. Roadrunner customers can change their password on the Roadrunner Password Reset Tool page.

In November, Comcast reset the passwords for almost 200,000 customers after the information was discovered on the black market. The breach was blamed on phishing attacks that tricked Comcast customers into providing their passwords.

Unlike cyberattacks that find security holes to steal customer data, phishing relies on tricking customers into clicking links or downloading files from emails that look legitimate.



The information contained within this article was accurate as of January 11, 2016. For up-to-date
information on any of the terms, cards or offers mentioned above, visit the issuer's website.