A European ISP has admitted that all new subscribers are given the same password.
The Dutch branch of Tele2 claimed that when a new subscriber signs up, they can choose a login or are assigned one and they are then sent a letter by Tele2 with their login name, password and the date their new DSL connection will be activated.
As the password is changed monthly instead of being generated randomly, all subscribers that signed up in the same month will have the same password.
Read more on Security and the Net [corrected]
Thanks to Brian Honan for this link.
The original story is at Security and the Net rather than SC Magazine
Tele2 Netherlands giving the same password to all users
http://securityandthe.net/2009/08/23/tele2-netherlands-giving-the-same-password-to-all-users/
Thanks! I’ve corrected the url to reflect that.