Time Warner Cable freelancers managing online apps left the AWS S3 storage, which included subscriber data, vulnerable.
According to Kromtech, independent contractors that managed online applications for Time Warner Cable (TWC) and other businesses ignored the AWS S3 storage that held subscriber data.
In addition to phone numbers, usernames, MAC addresses, modem hardware serial numbers, account numbers, contact information, and other billing details, the exposed customer records also included addresses and phone numbers.
TWC is informing affected customers of the data leak.
Source: https://securityaffairs.com/62752/data-breach/time-warner-cable-data-leak.html
"id": "TIM43791223",
"linkid": "time-warner-cable",
"type": "Data Leak",
"date": "09/2017",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"