Pierluigi Paganini October 24, 2015

Hackers that recently breached the systems at TalkTalk IPS have stolen ‘incomplete’ customer bank data, states an official announcement issued by the firm.

This week the TalkTalk Telecom Group plc has publicly disclosed that four million subscribers  have been impacted by a “sustained cyberattack” that hit its servers.

On Friday, the TalkTalk CEO Dido Harding confirmed personally receiving a ransom demand following the data breach.

On Saturday afternoon, TalkTalk confirmed that banking data stolen by the hackers were incomplete, the company explained that the data breach hasn’t compromised complete credit card details of the customers. The company also confirmed that user’s passwords have not been exposed during the cyber attack.

“Any credit card details that may have been accessed had a series of numbers hidden and therefore are not usable for financial transactions, eg ‘012345xxxxxx 6789It’,” states an official statement issued by the company.

TalkTalk added that it is continuing to support the investigation conducted by the Metropolitan Police Cyber Crime Unit.

“We now expect the amount of financial information that may have been accessed to be materially lower than initially believed and would on its own not enable a criminal to take money from your account.“

All subscribers should:

• Sign up to your free credit reporting service using this code: TT231. We have partnered with Noddle, one of the leading credit reference agencies, to offer 12 months of credit monitoring alerts for all TalkTalk customers
• Change your passwords – While TalkTalk My Account passwords have not been accessed, it would be prudent to change your TalkTalk password once this service is back up and running, and any other accounts that use the same password. We will update as soon as services are restored
• Report anything suspicious – Keep an eye on your bank account and report anything unusual to your bank and Action Fraud as soon as possible. Action Fraud is the UK’s national fraud and internet crime reporting centre, and can be reached on 0300 123 2040 or viahttp://www.actionfraud.police.uk
• Stay vigilant – TalkTalk will NEVER call customers and ask you to provide personal details or passwords. Please take all steps to check the true identity of any organisation that calls requesting for personal information. You can call us on 0800 083 2710 or 0141 230 0707.

Pierluigi Paganini

(Security Affairs – TalkTalk, data breach)

[adrotate banner=”5″]

[adrotate banner=”13″]