New dispute for Revolut, which suffered a cyber attack that could expose the personal information of tens of thousands of customers. Apparently, the accident would have occurred a week ago and even worse, on Sunday night, making timely intervention even more difficult. A spokesperson for the company shared some details with Bleeping Computer, saying that fortunately the data remained exposed for a short time, as despite the less than ideal conditions, it was possible to intervene and isolate the threat. On balance, 50,150 users were interested, whom Revolut would have already contacted via email so that the necessary precautions are taken.
Based on information from Revolut, we find that the number of interested customers, among European ones, is 20,687. Details of how the attackers gained access to the database were not disclosed and more investigation will likely be required. Data theft would have exposed information such as.
- Email addresses
- Full names
- Postal addresses
- Phone numbers
- Payment card details (limited)
- Account data
However, in the messages that Revolut sent to the affected customers, it is stated that the personal data compromised varies according to the user, but the PIN and password of any credit cards were not stolen, and consequently, there was no direct economic damage. Below is the complete statement by the Revolut spokesperson, issued by Bleeping Computer.
Revolut recently suffered a highly targeted cyber attack. This resulted in an unauthorized third party gaining access to the details of a small percentage (0.16%) of our customers for a short period of time. We immediately identified and isolated the attack to effectively limit its impact, and contacted affected customers. Customers who did not receive an email were not affected. To be clear, no funds could be accessed or stolen. Our customers’ money is safe, as always. All customers can continue to use their cards and accounts as normal. We take incidents like these incredibly seriously and would like to sincerely apologize to all customers who have been affected by this incident, as the safety of our customers and their data is our top priority at Revolut.
Apparently, some Revolut customers would have noticed a rather suspicious circumstance in the period in which the theft took place, namely that in the support chat inappropriate language was used with those who requested help or information of any kind. Few details on this curious implication, which will be explored together with the rest of the question.
Founded in 2015, Revolut is a fast-growing financial technology company, now offering banking, money management, and investment services to clients around the world. It recently introduced Revolut Pay, a new online payment feature that makes security its strong point, as it allows you to perform transactions without sharing any data.