The Register® — Biting the hand that feeds IT

Feeds

Orange suspends extranet after attack

Enable disabled

By Bill Ray, 13th April 2007
3

Email delivery: 4 steps to get more email to the inbox

Orange has had to suspend access to its "Enable" system since last Thursday when it became aware that a third party was trying to access the credit checking and connection management system.

In a statement, Orange said someone tried to get in to the system, which is designed for internal and external sales people. Orange wouldn't be drawn on what data, if any, was compromised. The system is designed to manage customers wanting upgrades or coming to the end of their contract, so it seems likely that the attacker was someone who could gain financially from that information.

The most obvious candidate would be a contract reseller, who wanted to call up Orange customers coming to the end of their contracts. Such companies have, in the past, been reduced to calling people at random in the hope of hitting someone near renewal, so they would certainly be interested in details of customers nearing the end of their contracts, including their eligibility and credit rating, as well as name and number.

So, if you're an Orange customer getting suspicious calls offering you a new contract, let us know.

The Reg understands that new usernames and passwords have been issued to legitimate Enable users, though the system isn't fully operational and Orange says it is still investigating. So don't hold your breath. ®

Email delivery: Hate phishing emails? You'll love DMARC

3 Reader Comments

Whitepapers

5 ways to prepare your advertising infrastructure for disaster
Being prepared allows your brand to greatly improve your advertising infrastructure performance and reliability that, in the end, will boost confidence in your brand.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Email delivery: Hate phishing emails? You'll love DMARC
DMARC has been created as a standard to help properly authenticate your sends and monitor and report phishers that are trying to send from your name..
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Email delivery: 4 steps to get more email to the inbox
This whitepaper lists some steps and information that will give you the best opportunity to achieve an amazing sender reputation.
Search more Resources

More from The Register

next story
US.gov - including NASA et al - quits internet. Is the UN running it now?
'Due to a lapse in funding, the US federal government has shut down'
103
MPs slam bumpkin fibre rollout, demand halt to further £250m cash spaff
And an end to BT's 'quasi-monopoly'
43
WHY didn't Microsoft buy RIM? Us business blokes would have queued for THAT phone
Nothing cuts it if you're a sysadmin
123
EE still has fastest, fattest 4G pipe in London's M25 ring
RootMetrics unfurls crowd-sourced 4G coverage map
27
Report says PRISM snooped on India's space, nuclear programs
New Snowden doc details extensive NSA surveillance of 'ally' India
37
Facebook sharpens ad-shifting tool: Soon users will eat creepily SPECIFIC ad-gloop
Just an algorithm tweak and you're all mine ... bitch
23
Highways Agency tracks Brits' every move by their mobes: THE TRUTH
We better go back to just scanning everyone's number-plates, then?
65
Google tentacle slips over YouTube comments: Now YOUR MUM is at the top
Ad giant tries to dab some polish on the cesspit of the internet
49
AT&T takes on Google fiber, fixin' to give Texans GIGABIT GUNS
1Gbps, to a few people, some of the time
10
Reg readers! You've got 100 MILLION QUID - what would you BLOW it on?
Because Ofcom wants to know what to do with its lolly
63
prev story