Post Office broadband hit by cyberattack


Post Office broadband hit by cyber-attack

Image caption
The Post Office provides a broadband service that runs off the back of TalkTalk”s service

Post Office broadband customers are the latest to have had their online access cut by an attack that targets certain types of internet routers.

A spokeswoman for the organisation told the BBC that the problem began on Sunday and had affected about 100,000 of its customers.

Earlier in the week, Germany”s Deutsche Telekom revealed that up to 900,000 of its customers had lost their internet connection as a result of the attack.

It is not known who is responsible.

But it involves the use of a modified form of the Mirai worm – a type of malware that is spread via hijacked computers, which causes damage to equipment powered by the Linux operating system.

Mirai was also involved in an earlier attack that caused several of the world”s leading websites to become inaccessible, including Spotify, Twitter and Reddit.

Image caption
Zyxel”s AMG1302 router fell victim to the Mirai worm

Several models of router are vulnerable to the latest cyber-assault, including the Zyxel AMG1302, which is used by the Post Office.

“We would like to reassure customers that no personal data or devices have been compromised,” said the Post Office”s spokeswoman.

“We have identified the source of the problem and implemented a resolution which is currently being rolled out to all customers.

“For those customers who are still having problems, we are advising them to reboot their router.”

The same router is also used by Kcom, an internet service provider (ISP) based in Hull, whose customers have also been affected.

“The vast majority of our customers are now able to connect to and use their broadband service as usual,” the firm said in a statement.

“Our core network was not affected at any time and we have put in place measures to block future attacks from impacting our customers” routers and their ability to access the internet.”

Attack widens

Security researchers have also suggested that TalkTalk”s D-Link DSL-3780 routers are also vulnerable to the Mirai malware.

According to the Downdetector website, TalkTalk customers have also reported disruption to their internet service over the past days. However, it is not clear if this is connected.

TalkTalk”s own status checker does not acknowledge a problem.

A spokeswoman from the firm was unable to comment.