British Internet and TV provider TalkTalk is investigating a possible data leak. The fact is that someone under the nickname b0nd is selling TalkTalk customer data on a hacker forum, allegedly stolen in January 2025.
The attacker claims that the leak occurred in January 2025 and affected 18,839,551 current and former customers of the company. It is worth noting that TalkTalk is used by only about 2.4 million subscribers, so information security specialists have already doubted the authenticity of this leak.
However, to prove his words, b0nd published a sample of the allegedly stolen data, which contains subscriber names, email addresses, last used IP addresses, work and home phone numbers. The hacker also posted screenshots in the public domain, judging by which the data could have been stolen from the SaaS subscription management platform Ascendon, and not directly from TalkTalk.
TalkTalk representatives have already confirmed to the media that the company is currently investigating the incident and believes that the incident is related to hacking of a third-party partner.
[td]“We have become aware of an unauthorized access and misuse of one of our third-party vendors’ systems. However, no billing or financial information was stored on those systems. Our incident response team is continuing to work on this matter and we have immediately taken appropriate security measures,” the company said. “Our investigation is ongoing, but we can confirm that the number of customers allegedly affected by the breach, as mentioned in some online posts, is inaccurate and greatly inflated.”[/td]At the same time, CSG Ascendon told journalists that b0nd data was indeed obtained from their platform. At the same time, the company even stated that there was no hacking, and the incident affected only one client:
[td]“On January 21, 2025, CSG became aware that unauthorized parties had gained access to one provider’s data stored on the CSG platform. We have no evidence that CSG’s systems or technology were compromised or that CSG was the culprit of this unauthorized access to data. CSG ensured immediate containment of the incident and is actively supporting the [affected] customer.”[/td]
The attacker claims that the leak occurred in January 2025 and affected 18,839,551 current and former customers of the company. It is worth noting that TalkTalk is used by only about 2.4 million subscribers, so information security specialists have already doubted the authenticity of this leak.
However, to prove his words, b0nd published a sample of the allegedly stolen data, which contains subscriber names, email addresses, last used IP addresses, work and home phone numbers. The hacker also posted screenshots in the public domain, judging by which the data could have been stolen from the SaaS subscription management platform Ascendon, and not directly from TalkTalk.
TalkTalk representatives have already confirmed to the media that the company is currently investigating the incident and believes that the incident is related to hacking of a third-party partner.