And their username is a standard combination of zip code and house number. As another 20,000 ADSL users use that standard username also as their password, the total of easily accessible online personal accounts amounts to 140,000.
Now is there anything interesting to see when logging into that online “self-care” environment of ADSL users?
Well, it presents people with: personal details, bank account number, subscription type and the ability to change the user’s password.
KPN says it has immediately taken the necessary measures to remedy the problem.
Dutch language news article and KPN press release:
KPN Shuts Down 2 Million Dutch E-Mail Accounts
KPN Hacker To Remain In Custody For Another 30 Days
KPN Makes Mistake Configuring Mailserver: City Of Amsterdam Loses 2 Days Worth Of Incoming E-mails
Dutch Government: KPN Hackers Were Able To Manipulate Internet Traffic. Have They Caused Recent Outages?
KPN Decides To Outsmart Hackers…By Sending Snail Mail Containing Usernames And Passwords
Fastest police investigation ever: Dutch internet users who filed criminal complaints against DPI using providers KPN, Vodafone and T-Mobile received a letter from prosecution authorities that there were no grounds for prosecution and that no suspects could be identified. The letter was received one day after they filed their complaints