Police officers in Northern Ireland, working with detectives from the Metropolitan Police Cyber Crime Unit, have arrested a 15-year-old boy in connection with the latest internet attack on British telecom provider TalkTalk.
According to a press release issued by the police, the boy was arrested in County Antrim on suspicion of committing offences under the Computer Misuse Act and his home searched.
He has been taken into custody for interviewing.
As you may recall, it is believed that TalkTalk suffered a denial-of-service and SQL injection attack on October 22nd, and as the beleaguered firm attempted to reassure its four million customers that it could be trusted many commentators pointed out that it was the third time that it had suffered a damaging data loss in less than a year.
Obviously there is no way for me to know if the teenager was responsible for the hack, or has inside information on the attack, but I suspect many will view his age as somehow an indicator that TalkTalk’s hack was even more shameful than previously considered.
Whether that’s fair or not, I’m not sure.
But I do know that both DDoS and SQL injection attacks are relatively unsophisticated, and don’t require years of experience to pull off. In order to be at risk from SQL injection attacks, for instance, all you need is a website that has been built in an amateurish fashion that has not correctly sanitised user input.
Anyone building a business website who has not learnt about how to protect against SQL injection attacks probably needs to go back to the classroom themselves.
You can see what I have to say about the arrest, and advice for other companies running online businesses, in my latest YouTube video.
If you would like me to make more videos, please consider subscribing to my YouTube channel.
The Northern Ireland police have now released the 15-year-old male on bail.
15 year old male arrested in connection with alleged theft of data from firm Talk Talk has been released on bail pending further enquiries.
— Police Service NI (@PoliceServiceNI) October 27, 2015
Found this article interesting? Follow Graham Cluley on Twitter to read more of the exclusive content we post.