The personal records of up to four million Time Warner customers were possibly leaked from an unsecured Amazon server. German-based cybersecurity firm Kromtech discovered the breach.
Some of the affected records date back to 2010, but it’s not yet known exactly how many were impacted. Though four million records were breached, the data of all four million may not be at risk.
Subscribers' email addresses, financial transaction info and usernames were openly available on unsecured Amazon servers.
"A vendor has notified us that certain non-financial information of legacy Time Warner Cable customers who used the My TWC app became potentially visible by external sources," Time Warner owner Charter Communications told the Hollywood Reporter on Friday. "Upon discovery, the information was removed immediately by the vendor, and we are currently investigating this incident with them. There is no indication that any Charter systems were impacted. As a general security measure, we encourage customers who used the My TWC app to change their user names and passwords."