If you’re a business with multiple broadband lines, you need to read this. Yesterday, we discovered a competitor could hijack one of our customer’s connections with just 24 hours notice – and there’s almost nothing we could do to stop it.
What Happened?
On Tuesday afternoon, we received an automated notification that one of our customer’s broadband connections was being migrated to another provider. This customer has 18 lines with us. They hadn’t requested any change.
After confirming with the customer that this was completely unsolicited, I called our wholesale provider to cancel the erroneous migration. Their response? “It might not work because of OneTouch Switching.”
What is OneTouch Switching?
OneTouch Switching is Ofcom’s new regulation designed to make switching broadband providers easier. In theory, it’s consumer-friendly. In practice, it’s created a massive vulnerability for businesses.
Here’s how it works:
- A new provider can initiate a switch with minimal verification
- You get as little as 24 hours notice
- The ONLY person who can stop it is the end customer (not their current provider)
- If the customer misses the notification, the switch happens automatically
Why This is Dangerous for Businesses
- Sophisticated Social Engineering Target – Scammers now have a clear attack vector
- Multi-Site Chaos – Imagine this happening across multiple locations
- Critical Service Disruption – 24 hours isn’t enough time for many businesses to respond
- Bypasses Existing Contracts – Your 3-year agreement means nothing
How to Protect Your Business
Immediate Actions:
- Ensure your authorised contacts are up-to-date with your provider
- Set up email alerts for any account changes
- Brief your team on this vulnerability
- Document your current services and contract terms
Questions to Ask Your Provider:
- What additional verification can we implement?
- Can we set up migration blocks on critical services?
- What’s your process if we report an unauthorised switch?
Our Commitment to River Technologies Customers
We’re implementing additional safeguards:
- Direct phone verification for ANY migration request
- 48-hour courtesy warning on any switching activity
- Dedicated account protection for multi-line customers
- Emergency reversal procedures if switches occur
The Bigger Picture
While Ofcom meant well with OneTouch Switching, the implementation hasn’t considered B2B implications. We’re actively engaging with industry bodies to push for business-specific protections.
Until then, vigilance is your best defence.
Worried about your broadband security? Let’s review your vulnerabilities. Book a free 15-minute consultation to ensure your critical connections are protected.
[Book a free security review with our team →]
Have you experienced issues with OneTouch Switching? Share your story in the comments or reach out directly. We’re collecting case studies to present to Ofcom.
