Cyber assault number is reduced
TalkTalk says fewer customers hit by hack attack
The telecoms firm said its internal investigation indicated that 156,959 had seen their personal details accessed by the hackers on 21 October.
Of those, just 15,656 bank account numbers and sort codes were seen.
In total, 28,000 “obscured credit and debit card numbers” were accessed, but “cannot be used for financial transactions, and were ‘orphaned’, meaning that customers cannot be identified by the stolen data”.
All customers who have had financial details accessed have now been contacted by TalkTalk, and offered advice on how to keep themselves safe.
In a statement issued this morning, it said: “Our ongoing forensic analysis of the site confirms that the scale of the attack was much more limited than initially suspected, and we can confirm that only 4% of TalkTalk customers have any sensitive personal data at risk. However, we continue to advise customers to be vigilant, and to take all precautions possible to protect themselves from scam phone calls and emails.
“It was a difficult decision to notify all our customers of the risk before we could establish the real extent of any data loss. We believe we had a responsibility to warn customers ahead of having the clarity we are finally able to give today.
“However, we continue to advise customers to be vigilant, and to take all precautions possible to protect themselves from scam phone calls and emails.”
This is the second time the company has revised its figure, Originally it was thought that around four million people were affected.
Four people, including three teenagers, have been questioned by police in connection with the attack.