Customers of UK ISP Plusnet have been told to change their account passwords after a database break-in by malicious hackers.
The hackers gained control of a Plusnet mail server and stole a list of e-mail addresses, which led to users’ webmail accounts being flooded with spam.
Some Plusnet customers may also have been exposed to a Trojan computer virus following the data breach. A Trojan can be used to attack and steal data from a user’s PC.
Plusnet has shut down the affected webmail system while it fixes the problem, and has set up an alternative platform for users.
The ISP says it does not know how many account details were stolen in the attack, which happened earlier this month.
David Lacey’s security blog >>
The latest ideas, best practices, and business issues associated with managing security
Stuart King’s risk management blog >>
Dealing with the operational challenges of information security and risk management
Comment on this article: firstname.lastname@example.org