Telecoms company TalkTalk has suffered what it describes as a 'significant and sustained cyber attack' that has seen the personal details of its four million customers obtained by attackers unknown.
While TalkTalk's official announcement
, published yesterday following the discovery of the attack on Wednesday, claims that the attackers were targeting its public-facing website, the company has admitted that its database of user account details was accessed. While confirmation of exactly what was accessed has not yet been provided, the company has admitted to a 'chance
' that names, addresses, dates of birth, email addresses, telephone numbers, and account information including credit card numbers and bank account details for its four million customers were exposed during the attack.
TalkTalk has announced that it is contact all customers via email and letter to warn them of the breach, and is offering a year's free credit monitoring whilst also asking banks to keep an eye out for fraudulent account activity. The company also claims to have secured its servers against the attack, and is working with the Metropolitan Police Cyber Crime Unit to investigate the breach and find those responsible.
'We understand this will be concerning and frustrating,
' claimed TalkTalk managing director Tristia Harrison of the breach, 'and we want to reassure you that we are continuing to take every action possible to keep your information safe.
The attack marks the second time the company has admitted to security failings this year, after warning in February
that 'limited, non-sensitive information
' on its customers was accessed in a December 2014 breach.