Six million Sky broadband customers exposed to flaw that could let hackers steal bank info

19 November 2021, 15:55

Around six million Sky broadband customers were exposed to a security hack.
Around six million Sky broadband customers were exposed to a security hack. Picture: Alamy

By Sophie Barnett

Around six million Sky broadband customers were exposed to a security flaw that would have allowed hackers to "control millions of hubs for 18 months", a security company has warned.

Listen to this article

Loading audio...

The flaw has been fixed, but the security researchers said it took Sky nearly 18 months to fix the problem.

The bug was uncovered by the security group Pen Test Partners, who said it affected users who had not changed the router's default admin password.

As this is simple and easy to guess, hackers could easily reconfigure the router and take over a network, just by directing the user to a malicious network.

This could then give hackers access to sensitive information including log-in details for online banking.

According to the researchers, the affected router models were: Sky Hub 3 (ER110), Sky Hub 3.5 (ER115), Booster 3 (EE120), Sky Hub (SR101), Sky Hub (SR203), and the Booster 4 (SE210).

Sky said it had begun working to fix the problem as soon as it was made aware of it and it took the security of its customers "very seriously".

Cyber security expert explains what is behind the twitter hack

Pen Test Partners said there was no evidence the flaw had been exploited, but criticised Sky for the time it took to fix the issue.

It claimed the internet service provider had repeatedly pushed back deadlines it had set to fix the problem.

A spokesman for Sky said: "We take the safety and security of our customers very seriously.

"After being alerted to the risk, we began work on finding a remedy for the problem and we can confirm that a fix has been delivered to all Sky manufactured products."

The initial delay to the time it took for Sky to fix the problem was put down to the coronavirus pandemic, researchers said.

It also said it did not want to disrupt the "vastly increased network loading as working from home became the new norm".

But researchers were concerned by the speed - and time it took - for the company to respond, saying they believed Sky "did not give the patch the priority their customers deserved".

If you have a broadband router mentioned above, the research company has advised you change the passwords on it from the default ones set.

More Latest News

See more More Latest News

NHS hospitals and buildings are plagued by rats, cockroaches, silverfish and other pests, results from the latest staff survey have revealed.

Hospital of horrors: NHS 'plagued by rats and cockroaches' as well as 'sewage leaks and crumbling ceilings'

Sadiq Khan will get new powers to overrule councils that block pubs and clubs opening late

Boost for London's nightlife as Khan goes to war with local councils that block pubs and clubs opening late

Bruce Springsteen

Bruce Springsteen to put out seven 'lost' albums of unreleased songs

Val Kilmer & Tom Cruise in Top Gun

Tom Cruise breaks silence on 'dear friend' Val Kilmer's death with emotional tribute to Top Gun co-star

Virginia Giuffre

Woman driving Prince Andrew accuser Virginia Giuffre during crash that left her with 'four days to live' breaks silence

Prescot, Merseyside

Girl, 13, dies in horror Merseyside house fire as five children escape unharmed

File photo of a Harris hawk

Dive-bombing hawk that terrorised village with string of blood-soaked attacks finally caught by local hero

Exclusive
'Donald Trump has made Putin comfortable,' Mikhail Khodorkovsky has warned

'Trump has made Putin comfortable' despite massive Ukraine war losses, exiled former oligarch tells LBC

New images show the moment the two ships collided.

New images show moment of North Sea crash as investigation reveals neither ship had a 'dedicated lookout'

Washington, DC, USA. 15 Apr 2017. A balloon caricature of President Donald Trump appears at the Tax March protest near the U.S. Capitol.

Buy US chlorinated chicken in return for lower tariffs, Trump tells Britain

From jeans to jet fuel and firearms to whiskey: Britain unveils lengthy list of US items facing tariffs

From jeans to jet fuel and firearms to whisky: Britain unveils lengthy list of US items facing tariffs

Forensic investigators at Milton Keynes train station after a man was shot dead by armed police officers.

Knifeman shot dead by police in Milton Keynes after moving 'at speed' towards officers named for first time

The bodies of Andrew Searle and his wife Dawn were discovered by a neighbour.

British couple found dead in south of France home being ‘treated as murder-suicide’

Kerri Pegg, former governor of HMP Kirkham,

Prison governor denies relationship with drug boss 'Jesse Pinkman' after flip flops carrying his DNA found in her flat

Julie Goodyear as Bet Lynch. Her husband has now deleted a recent photograph of the actress which he shared in honour of her 83rd birthday on Wednesday

Julie Goodyear's husband removes rare photo of Coronation Street star after dementia diagnosis amid blacklash

The vehicle was later extinguished after the driver, covered in flames, emerged from the vehicle.

Amsterdam Dam Square car explosion sees driver engulfed in flames - just days after mass stabbing