TalkTalk has scaled down its estimate of the number of customers whose details were compromised by the damaging website hack that it suffered last month.

The company now says that the total number of customers whose personal details were accessed is 156,959, and that of these , 15,656 bank account numbers and sort codes were accessed; and 28,000 obscured credit and debit card numbers were accessed (but these cannot be used for financial transactions).

The remaining stolen customer details include names, addresses, date of birth, telephone number and email addresses. However the ISP insisted that TalkTalk My Account passwords were not accessed during the hack.

Data Breach

TalkTalk’s website was hacked on Wednesday 21 October, and it was initially thought that four million customer details had been compromised.

TalkTalk later scaled down this estimate and said that less than 21,000 bank account numbers and sort codes, less than 28,000 partial card details, less than 15,000 dates of birth and less than 1.2 million email addresses, names and phone numbers had been stolen.

But the ISP now says that following investigations by its own team and the Metropolitan Police, it can now confirm that the total number of customers whose personal details were accessed is 156,959.

“Our ongoing forensic analysis of the site confirms that the scale of the attack was much more limited than initially suspected, and we can confirm that only 4 percent of TalkTalk customers have any sensitive personal data at risk,” said the ISP. “However, we continue to advise customers to be vigilant, and to take all precautions possible to protect themselves from scam phone calls and emails.”

“We have now contacted all customers who have had financial details accessed, reiterating our advice on what to do to keep themselves safe,” said TalkTalk. “The financial information accessed cannot on its own lead to financial loss. We will be contacting all other affected customers in the coming days.”

Hack Fallout

The repercussions from the TalkTalk hack continue to be felt, weeks after the cyber attack.

Earlier this week, MPs on the Culture, Media and Sport Committee announced they will hold an inquiry into cyber security following the TalkTalk website hack.

Meanwhile a fourth suspect has been released on bail after detectives from the Metropolitan police cybercrime unit and officers from the National Crime Agency arrested a 16-year-old boy in Norwich.

The police have also arrested a 20-year-old man at an address in south Staffordshire, along with a 15-year-old boy from Northern Ireland and a 16-year-old boy from Feltham, west London.

Are you a security pro? Try our quiz!

Tom Jowitt

Tom Jowitt is a leading British tech freelancer and long standing contributor to Silicon UK. He is also a bit of a Lord of the Rings nut...

Recent Posts

BNP Paribas Joins JP Morgan Blockchain Trading Network

French bank BNP Paribas becomes first European bank to join JP Morgan's blockchain-based Onyx Digital…

14 hours ago

SEC Held Off Elon Musk Enforcement ‘Due To Court Fears’

US securities regulators may have refrained from enforcement actions against Elon Musk due to discouraging…

15 hours ago

Snap Earnings Warning Triggers Tech Sell-Off

Investors spooked after Snap warns of deteriorating economic conditions, says earnings now 'below the low…

17 hours ago

Russian Operator Discounts Smartphones As Sanctions Bite

Biggest Russian mobile operator MTS begins selling discounted and second-hand smartphones as Russians hit by…

17 hours ago

Clearview AI Fined £7.5m Over Facial Recognition Data

UK Information Commissioner's Office orders controversial facial recognition firm Clearview AI to delete data it…

18 hours ago

Airbnb To Pull Out Of China Amidst ‘Pandemic Challenges’

Airbnb to pull out of China as ongoing zero-Covid policy places severe restrictions on domestic…

19 hours ago