Don't Panic: 320,000 Time Warner Cable Accounts Stolen
The FBI told Time Warner Cable that 320,000 customer accounts were compromised, but likely as a result of data breaches at other companies.
Up to 320,000 accounts belonging to Time Warner Cable customers appear to have been compromised by online criminals. But it's not time to panic yet.
There's no indication that the servers of Time Warner Cable itself, which has about 12.4 million broadband subscribers, were breached. Rather, it seems that the stolen login credentials, which correspond to email addresses with the "rr.com" suffix, were aggregated from previous data thefts.
"The emails and passwords were likely previously stolen either through malware downloaded during phishing attacks or indirectly through data breaches of other companies that stored TWC customer information, including email addresses," a Time Warner Cable spokesman told CSO Online's Steve Ragan today (Jan. 7). "For those customers whose account information was stolen, we are contacting them individually to make them aware and to help them reset their passwords."
MORE: What to Do After a Data Breach
If you've got one of those "rr.com" email addresses, you should probably now change your Time Warner Cable password, as well as on all other accounts that used that password and the Time Warner Cable email address. (The "rr" stands for RoadRunner, a former brand name for Time Warner Cable's broadband service, and the full suffix will incorporate your local region, e.g. "@nyc.rr.com.") You can start at the RoadRunner Password Reset Tool at http://pt.rr.com/.
There was no indication that Time Warner Cable email addresses ending in "roadrunner.com" or "twc.com" were affected.
However, if you get an email purporting to be from Time Warner Cable regarding a password reset, don't click on any links embedded within the body of the email. The email might be fake, and the embedded link might be part of a phishing scam designed to steal, yup, your Time Warner Cable login credentials.
Sign up to get the BEST of Tom's Guide direct to your inbox.
Here at Tom’s Guide our expert editors are committed to bringing you the best news, reviews and guides to help you stay informed and ahead of the curve!
A Time Warner Cable spokesperson told NBC News yesterday (Jan. 6) that the FBI had contacted the cable company about the compromised accounts. The spokesperson indicated that another shoe may be about to drop: The FBI apparently informed other Internet service providers (ISPs) that accounts registered with them had also been compromised, but none of those other ISPs have yet come forward.
The larger Time Warner Inc. spun off Time Warner Cable as a separate entity in 2009. In 2012, Time Warner Cable stopped using the RoadRunner brand name, which it was licensing from Time Warner. New subscribers to Time Warner Cables' broadband services receive "twc.com" email addresses instead of "rr.com" ones.
Paul Wagenseil is a senior editor at Tom's Guide focused on security and privacy. He has also been a dishwasher, fry cook, long-haul driver, code monkey and video editor. He's been rooting around in the information-security space for more than 15 years at FoxNews.com, SecurityNewsDaily, TechNewsDaily and Tom's Guide, has presented talks at the ShmooCon, DerbyCon and BSides Las Vegas hacker conferences, shown up in random TV news spots and even moderated a panel discussion at the CEDIA home-technology conference. You can follow his rants on Twitter at @snd_wagenseil.