Has someone told Sid?
Burned: British Gas customer info hits Pastebiin
British Gas has 'fessed up that customer data posted to Pastebin was genuine, but believes payment details were not exposed. The BBC says it's seen an e-mail sent to customers about the privacy breach, which the energy company says was not due to a breach of its own systems. “I can assure you there has been no breach of our …
COMMENTS
-
Thursday 29th October 2015 08:17 GMT Anonymous Coward
British Gas - We're that good that somebody breached someone else's network and we know exactly how many records they got of ours and exactly what they got. Also we gave copies of Bills to TalkTalk so it's their fault.
In an alternate universe British Gas got done completely but only think 2,200 customers will complain.
-
Thursday 29th October 2015 08:30 GMT Dan 55
BBC says... "Affected users are being asked to make contact by phone or to securely reset their passwords via the company's website."
Will phone contact walk them through removing any keyloggers from their computer, changing their email password, and then changing their BG password to something else?
Password reset, doubt that'll work for people who use the same password for everything, which apparently is how this list was compiled... Their email's still probably pwnd.
How on earth do you solve this problem for people who don't give a toss? Maybe BG shouldn't let them have online accounts.
-
Thursday 29th October 2015 09:48 GMT Badvok
"How on earth do you solve this problem for people who don't give a toss? Maybe BG shouldn't let them have online accounts."
What? Just because I really, really don't give a toss who knows how much my Gas / Electricity bill is I shouldn't be allowed to have an online account?
Note: no bank account or card details are accessible via online BG account but a hacker could of course add their own card and pay my bill for me :)
-
-
Thursday 29th October 2015 12:56 GMT Badvok
"But before they had an email address and a password and afterwards they have an email address, email password, BG password, full address, DOB, and utility bills. See why it's a problem?"
Nope, not giving a toss about protecting online BG info is not the same as being dumb enough to use the same password for important things, so no they wouldn't get email password. And all the rest is freely available public information anyway. And any organisation that accepts a printed utility bill as proof of anything these days is just asking for trouble.
-
-
-
-
This post has been deleted by its author
-
Thursday 29th October 2015 10:01 GMT Doctor_Wibble
Stop doing stuff online
It's the only way to be sure, and if this latest incident helps drive home the message that we need to get over our dependency on this silly internet fad, then so much the better.
We need to keep the paper and postal industries going, and the meter readers need to be kept busy, and don't tell me that getting rid of these things has miraculously made our utilities cheaper because we all know they sodding well haven't. Wait no, surely I'm wrong, obviously when the utility companies told us they had to cut costs, they were all in extreme financial difficulty, I distinctly recall all those years of heavy losses they were reporting, I didn't misremember, surely? Or was I thinking of all those price reductions we were going to get?
Yeah, digression. Whatever. Sometime it's good to whinge. Even if I'm probably wrong on some of it.
Wait, 2200? So they only published half?
-
-
Friday 30th October 2015 10:50 GMT mm0zct
Re: "Information leaked ... would have included past bills"
The banks only accept bills printed by the company and posted to you, not self printed ones. I learned this after much palava trying to open a new joint account with my partner. The only thing in the end they would take is the council tax bill for this year (or an HMRC tax letter dated within a few months), because we have everything else paperless. House insurance on the property doesn't count even, nor did the fact I bought said flat through the same bank! (Mortgage and current accounts are completely separate, how ridiculous that the bank won't believe you live at the house you bought with them?)
-
-
Thursday 29th October 2015 12:52 GMT Anonymous Coward
Slightly on a tangent...
Has the national media started crapping its pants?
Not a single article ive found has had the balls to link to the pastebin dump.
Surely its in the publuc interest to know where the dump is and be able to check for themselves if they're on it.
Cmon Reg you've got bigger balls than this. Are you a public service or a bunch of gloating hacks?
-
Thursday 29th October 2015 13:14 GMT Creamy-G00dness
So British Gas gets to wash their hands completely??
Why the hell have they given customers information to someone else? surely they are still responsible for the breach if they did not vet the company that they gave/sold this information to properly.
Is it me or does this look like yet another corporate side step? all we need now is a raft of "we don't know" quotes.......go give em a hand Talk Talk.
-
Thursday 29th October 2015 17:17 GMT Pascal Monett
We need to have a running total
We need a website that responsibly discloses these incidents in detail, showing the current total and the history of how we got there.
Then we can arrange betting pools on who will be next, how many will be impacted, what the total will be at the end of a given period, etc...
Because anything goes these days, right ?