/ Money

Have you been a victim of a data breach?

Has your data been compromised in a cyber attack? Have you noticed any fraudulent or suspicious activity as a result? We want to hear about your experiences.

Back in May, a cyber-attack hit EasyJet, which could have exposed up to nine million people’s details.

In 2015, hackers accessed the details of 156,959 customers and 15,656 bank account numbers belonging to TalkTalk customers.

I’m currently working on an investigation into cyber-attacks and would like to hear from anyone who has lost money or encountered a scam following a data breach like these.

How do scammers use the data?

When your data is compromised in a cyber-attack, it can be sold to scammers on the dark web.

As a result, you might notice fraudulent activity after a data breach, such as:

⚠ Nuisance phone calls or emails

Credit or debit card fraud

Identify theft

If you’ve experienced any of these and think the suspicious activity is linked to a cyber-attack, I’d be really keen to hear more about it in the comments below.

As part of the investigation, I’ll be looking into what happens to your data in between it being stolen and it reaching scammers.

I’ll also be looking at better ways for you to protect yourself against harmful activity after a data breach.

What to do if you’re affected by a breach

If your personal data has been compromised in a cyber-attack, it’s well worth taking steps to protect yourself:

🔷 Change your password if your data has been lost and you use similar login details on other websites.

🔷 Keep a careful eye on your bank accounts and credit report for any suspicious activity and call your bank straight away if you notice anything.

🔷 Be wary of unexpected emails or phone calls – they could well be scams.

You can read our full guide to data breaches here.

Should customers be compensated?

A number of high-profile companies have been hit with data breaches over the past few years, and it looks like there may well be more going forward.

While the companies are often fined by the Information Commissioner’s Office, there is little by way of compensation for consumers affected.

Under GDPR legislation that came into effect in 2018, organisations are legally obliged to keep data secure.

So, if your data is lost and it causes you financial damage or distress, you may be able to make a claim from the organisation that lost it.

I’ll be looking into how many successful claims have been made by consumers and whether people should be entitled to compensation when their data is stolen.

Have you ever made a successful or unsuccessful claim against an organisation following a data breach? 

If so, let me know in the comments and I’ll follow up with the best way for us to have a private discussion about what happened.

Em says:
14 July 2020

Hi Hannah, your lead article contains a small error:

While the companies are often fined by the Information Commissioner’s Office (EasyJet was fined as much as £183 million), there is little by way of compensation for consumers affected.

EasyJet have yet to be fined by the ICO for their 2020 data breach. It was British Airways who were fined £183 million over their data breach in 2018 – only 500,000 customers. If EasyJet are found culpable for the data leak of 11 million customers, the fine might be somewhat more than that (up to 4% of revenue), so potentially up to £256 million.

Jeff says:
14 July 2020

I received notification recently saying that there had been a data breach where my information may have been exposed. I cant remember what company it was. However, 4 months ago I was a victim of identity theft where 2 mobile phone accounts were set up and phones delivered to me using my name and address and I was informed that someone tried to get credit to but a laptop, again using my name and address. Thankfully, they did not have my bank account details. The fraud departments of the phone companies have undertaken their investigation and closed the cases along with the finance company. I also reported this to my bank and Action Fraud.

Looks like some folk having scones at the Ritz have been scammed, see:- https://www.bbc.co.uk/news/technology-53793922

Thanks for that information Derek. It confirms that the Ritz – which probably makes the perfect scones – puts the scam on before the cream. See –

<”Afternoon Tea is served daily at 11.30am, 1.30pm, 3.30pm, 5.30pm, and 7.30pm. Priced at £53.50 for adults and £35 for children (including Value Added Tax at the prevailing rate at the time of payment) until 12th January 2021.
https://www.theritzlondon.com › aft…

Quite a long afternoon and presumably 2 hours in which to enjoy your sandwiches. I wonder how many ask for more ”a delectable selection of cakes and pastries, which will be replenished on request ” to extract maximum value?

A Sunday tradition when we holidayed in Dartmouth was lunch at the riverside hotel. Fixed price with a great selection of food for the three courses, including a delectable selection of puddings and pastries. We were a little amused to see one gentleman, dining with his wife, secreting a couple of pastries in the large patch pockets of his corduroy jacket. When he had gone the waitress who had served them saw we had noticed and told us they were locals who did this regularly.

Sorry, just realised I’m well off topic. I may now get writs from the modoreators.

I was half tempted to post this thread in the scones Convo but given the relevance to data breaches, thought it should best go here.