>It is understood some customer data was compromised, including customer names and contact details.
This is bad, although in all honesty it’s just another breach of the same data from another source to go on the pile (https://haveibeenpwned.com).
>Some Oyster card refund data may also have been accessed. This could include bank account numbers and sort codes of around 5,000 customers.
Bank account data leaking is bad reputation wise, but actually there isn’t a huge amount you can do with it directly. Maybe set up a direct debit worst case.
However for banks which “will always send the last four digits of your account number in all communication” it could be used as part of phishing attacks.
So… what’s been exposed then? Contactless bank cards or oyster card account details, or both? The reporting on this is all over the place, nowhere seems to give any concrete answer :/
They have a very bright future ahead of them (not being sarcastic at all). Back in 2011, there were a series of cyber attacks by this group *LulzSec*, and one of them turned out to be a [16 year old British teenager](https://en.wikipedia.org/wiki/Mustafa_Al-Bassam). Fast forward to now. They ended up being in Forbes 30 Under 30 around 2016, and founded Celestia recently, a modular blockchain network that’s received millions in funding.
So, kid’s going to be alright.
give that kid a job at TfL!
So that’s why I haven’t been able to download my contactless statement
Mate my card accidentally went into minus and I can’t re-approve it because of this ffs 😂 having to buy travel cards every day
New hire at my FAANG.
Seriously, he should apply and I’d guarantee an interview.
9 comments
Ladies and gentlemen, we got ‘im
Future Engineer?
>It is understood some customer data was compromised, including customer names and contact details.
This is bad, although in all honesty it’s just another breach of the same data from another source to go on the pile (https://haveibeenpwned.com).
>Some Oyster card refund data may also have been accessed. This could include bank account numbers and sort codes of around 5,000 customers.
Bank account data leaking is bad reputation wise, but actually there isn’t a huge amount you can do with it directly. Maybe set up a direct debit worst case.
However for banks which “will always send the last four digits of your account number in all communication” it could be used as part of phishing attacks.
So… what’s been exposed then? Contactless bank cards or oyster card account details, or both? The reporting on this is all over the place, nowhere seems to give any concrete answer :/
They have a very bright future ahead of them (not being sarcastic at all). Back in 2011, there were a series of cyber attacks by this group *LulzSec*, and one of them turned out to be a [16 year old British teenager](https://en.wikipedia.org/wiki/Mustafa_Al-Bassam). Fast forward to now. They ended up being in Forbes 30 Under 30 around 2016, and founded Celestia recently, a modular blockchain network that’s received millions in funding.
So, kid’s going to be alright.
give that kid a job at TfL!
So that’s why I haven’t been able to download my contactless statement
Mate my card accidentally went into minus and I can’t re-approve it because of this ffs 😂 having to buy travel cards every day
New hire at my FAANG.
Seriously, he should apply and I’d guarantee an interview.