Top Class Actions’s website and social media posts use affiliate links. If you make a purchase using such links, we may receive a commission, but it will not result in any additional charges to you. Please review our Affiliate Link Disclosure for more information.
Hackers have managed to breach Npower’s mobile app, exposing bank account numbers and sort codes of customers, reportedly forcing the company to permanently remove its app.
The energy company announced in February that its mobile app had been hit by hackers in a cyberattack.
“We identified suspicious cyber-activity affecting the Npower mobile app, where someone has accessed customer accounts using login data stolen from another website. This is known as ‘credential stuffing’,” said Npower in a statement reported by BBC News.
“We’ve contacted all affected customers to make them aware of the issue, encouraging them to change their passwords and offering advice on how to prevent unauthorised access to their online account.”
It’s unknown when the breach took place and how many of Npower’s gas and electric customers were affected by it, according to ITPro.
The Information Commissioner’s Office confirmed that the company had informed it of the breach and told BBC News that it is investigating.
Npower has instructed affected users to change their passwords.
“The breach included sort codes and the last four digits of customer bank account numbers, leaving them wide open to fraud,” Ray Walsh, cybersecurity expert at ProPrivacy, told The Guardian. “Hackers now have access to all the user credentials and passwords from the Npower app, which means that consumers must change the passwords of any accounts that use the same details.”
Walsh told reporters that Npower customers who used the app should be sure to check their bank statements, as well as be wary of any emails asking for personal information or demanding users click on links.
The energy company is reportedly in the process of winding down after being purchased by E.ON, reports The Guardian. Npower customers were unable to access the app earlier in the year, due to an unrelated issue, according to the company. Now, it appears that Npower’s mobile app is off the table, as the company announced that it will not be reinstated in the wake of the hack. Customers will need to access their accounts through Npower’s website.
“Protecting customers’ security and data is our top priority,” said the company in a statement reported by The Guardian.
Were you affected by the Npower data hack? Tell us what happened in the comment section below!
ATTORNEY ADVERTISING
Top Class Actions is a Proud Member of the American Bar Association
LEGAL INFORMATION IS NOT LEGAL ADVICE
Top Class Actions Legal Statement
©2008 – 2024 Top Class Actions® LLC
Various Trademarks held by their respective owners
This website is not intended for viewing or usage by European Union citizens.
