#1
Posted 24 October 2015 - 06:36 AM
#2
Posted 24 October 2015 - 06:59 AM
Sound and thoughtful advice Paws
#3
Posted 25 October 2015 - 03:08 AM
many thanks phillpower2 for your kind words.
talktalk's investigations continue but they have made the following announcement:
The number of customers affected and the amount of data potentially stolen is smaller than originally thought.
Our website was attacked, but our core systems weren’t and remain secure
On its own, none of the data that may have been accessed could be used to leave you financially worse off.
We don’t store unencrypted credit or debit card data on our site, so any card details which may have been accessed have the 6 middle digits blanked out. For example, it would appear as 012345XXXXXX6789. This means it can’t be used for financial transactions.
No My Account passwords have been accessed.
No banking details were taken that you won’t already be sharing with people when you write a cheque or give to someone so they can pay money into your account.
I'll continue to update this thread when further information is made available
#4
Posted 31 October 2015 - 03:04 AM
The following update has been announced by talk talk:
Since the cyber attack on our website on Wednesday 21st October 2015, we have been working with the Metropolitan Police Cyber Crime Unit and world leading cyber crime and security experts, to establish what happened and to understand the extent of the data stolen during the attack.
Our investigation continues, but we now know the extent of the data accessed is significantly less than originally suspected. We can now confirm that the following personal data were accessed
• Less than 21,000 unique bank account numbers and sort codes
• Less than 28,000 obscured credit and debit card details. As previously stated, the middle 6 digits had been removed and therefore are not usable for financial transactions e.g. 012345 xxxxxx 6789.
• Less than 15,000 dates of birth.
• Less than 1.2 million email addresses, names and phone numbers. As we have previously confirmed, the credit and debit card details cannot be used for financial transactions. As an extra precaution, we have shared the affected bank details with the major UK banks so they can take their usual actions to protect accounts in the highly unlikely event that a criminal attempts to defraud them. We can also reassure you that no TalkTalk My Account passwords were accessed.
Continue to keep yourself protected Our offer of 12 months free credit monitoring alerts is still available. We would encourage you to sign up to Noddle, one of the leading credit reference agencies, using the code TT231. Even though the scale of the attack is significantly smaller than initially suspected, we would also advise you to be vigilant, and to take all precautions possible to protect yourself from scam phone calls and emails. We want to make customers aware that we will not call or otherwise contact you regarding this incident and ask for bank details or other financial or personal information. TalkTalk will also NEVER:
• Ask for your bank details to process a refund. If you are ever due a refund from us, we would only be able to process this if your bank details are already registered on our systems.
• Call customers and ask you to download software onto your computer, unless you have previously contacted TalkTalk, discussed and agreed a call back for this to take place.
• Send customers emails asking you to provide your full password. We will only ever ask for two digits from it to protect your security. Once again, we want to reassure you we are taking every precaution to keep your information safe. If you have any questions, please visit www.talktalk.co.uk/secure or call us on 0800 083 2710.
On behalf of everyone at TalkTalk, I would like to apologise to all our customers. We know that we need to work hard to earn back your trust and everyone here is committed to doing that.
Yours sincerely,
Dido Harding
Chief Executive Officer
Comment by paws: It certainly looks like the security issue is not as far reaching as might have been thought originally, however it is still a useful reminder that folks need to take sensible precautions, and this applies to both corporate and the home user.
Similar Topics
Also tagged with one or more of these keywords: hack, ransom demand
Security →
Virus, Spyware, Malware Removal →
DNS Issues Resolved but Please Check My LogsStarted by WeeShaSha , 06 Mar 2018 dns, malware, hack |
|
|
||
Hardware →
Networking →
I use my smartphone as my modem and need help to configureStarted by unni2k17 , 26 May 2017 mobile as modem, default gateway and 8 more... |
|
|
||
Software →
Web Browsers and Email →
remove API spy.com Unauthorized-invalid API keyStarted by chimomma , 28 Mar 2017 API, iOS, iphone, access icloud and 6 more... |
|
|
||
Retired Forums →
Windows Vista and Windows 7 →
please tell me what these 6 logs mean, my friend has been hacking intoStarted by trixr4ever , 22 Apr 2016 hack, hacker, logs, event log and 3 more... |
|
|
||
Security →
Virus, Spyware, Malware Removal →
Am I hacked?Started by Notsure00 , 09 Mar 2016 Hack |
|
|
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users