The personal data and bank details of millions of Britons could have been stolen after one of the country’s largest telecom services provider TalkTalk was hit by a major cyber-attack, the third such attack to hit the telecom giant in last one year.
The phone and broadband provider said personal and banking details of up to four million customers may have been accessed in the “significant” attack but the exact figure remains uncertain.
Chief executive Dido Harding said the company had been working through the night to try to contact all customers and apologised to them for the third cyber-attack affecting the firm in the past 12 months. She, however, said that the breaches were “completely unrelated”.
“I’m very sorry for all the frustration, worry and concern this will inevitably be causing all of our customers. We have been working through the night to make sure that we contact all of our customers and can reassure them about how they can keep their data safe,” Harding said.
“Unfortunately cybercrime is the crime of our generation. Can our defences be stronger? Absolutely. Can every company’s defences be stronger? I’m a customer myself of TalkTalk, I’ve been a victim of this attack,” she said.
The cyber-attack comes in the backdrop of several high-profile breaches of personal information in the US. Details of millions of customer were stolen from the infidelity website Ashley Madison in August this year, while Sony Corp. was also a victim of data breach in November 2014. Scotland Yard’s cybercrime unit is investigating the attack but said no-one had been arrested over Wednesday’s attack, however, enquiries were ongoing. There is some speculation that the attackers could be Islamic extremists or extortionists.
“There have been no arrests and inquiries are ongoing. We are aware of speculation regarding alleged perpetrators. This investigation remains at an early stage. A full assessment of the alleged data theft is ongoing,” a Metropolitan Police statement said.
TalkTalk said it had contacted the major banks asking them to look out for any suspicious activity on customers’ accounts. It added that every customer would be getting a year’s free credit monitoring.
A company statement said: “That investigation is ongoing, but unfortunately there is a chance that some of the following data has been compromised: names, addresses, date of birth, phone numbers, email addresses, TalkTalk account information, credit card details and/or bank details.
“We are continuing to work with leading cybercrime specialists and the Metropolitan police to establish exactly what happened and the extent of any information accessed.”
TalkTalk shares tumbled more than 10 per cent, wiping almost 300 million pounds from its stock market value, as investors and customers worried about the financial impact of the cyber attack.