The TalkTalk boss, Dido Harding could not confirm how many customers have been affected by the data hack but he said the latest information on the attack reveals it is much “smaller than originally thought”.
Mr. Harding said that the hack attack may have exposed TalkTalk customer names, addresses, dates of birth, email addresses, telephone numbers, credit card details, bank details, and information relating to TalkTalk accounts.
Nonetheless Talk Talk recommends that customers keep an eye on their accounts over the next few months and to report any unusual activity to their bank and Action Fraud as soon as possible.
TalkTalk has said that its website has come under a sustained and significant cyber-attack and Police are now investigating.
The Process of the hack was firstly a Distributed Denial of Service attack. This is when a network is flooded with requests which it can’t respond to in time, so it shuts down, secondly a SQL Injection to request the customers data from the server.
Many TalkTalk subscribers are at risk of having lost their personal data including bank details.
British police are investigating and have not confirmed if they believe that the group that contacted the company is actually responsible for the hacking or if the demand is credible.
Shares in TalkTalk, which had fallen 7% since the group’s websites went down on Wednesday, fell another 8.5% on Friday morning to a two-year low of 238 pence.
“Not all of the data was encrypted”, the company acknowledged, meaning that the hackers could read the data without any problems.
If you are contacted by anyone asking you for personal data or passwords (such as for your bank account), take extreme caution in checking the true identity of the organisation.
TalkTalk has urged their customers to change their account passwords and any other accounts which use the same passwords.
This is the third attack TalkTalk has suffered in the past year.