TalkTalk attack “much more limited” than suspected

The hackers also obtained the full bank account details (i.e. sort code and account number) for 15,656 customers.

Customers are still advised to be vigilant and to take all precautions necessary to protect themselves from scam phone calls and emails.

TalkTalk on Friday radically revised down the number of customers it says have been hit by a recent cyber theft of personal data.

The numbers of folks who had their bank account details compromised – namely the account number and sort code – totalled 15,656.

However, there have been instances of criminals using the data to contact customers in attempt to extract further information which allows them to access their accounts and steal from them.

In a statement, it said 156,959 had their details accessed.

Nonetheless, TalkTalk stock remains close to the bottom its 52-week range (220.10p – 415.10p), now trading at 230p per share.

Four people arrested separately on suspicion of offences under the Computer Misuse Act, in connection with the cyber attack, have been released on bail. She said it had “a responsibility to warn customers ahead of having the clarity we are finally able to give today”.

The cyber attack on TalkTalk’s website happened on 21 October, it added.

Police had previously arrested a 15-year-old boy from County Antrim, Northern Ireland, on Oct. 26, a 16-year-old boy in Feltham, England, on Oct. 29, and a 20-year-old man in Staffordshire on Oct. 31.

TalkTalk has said customer requests to leave the company and contracts early will be assessed on a case by case basis. The financial information accessed can not on its own lead to financial loss.

The firm now has the task of reassuring its customers that security is robust enough to prevent a future data breach. The company has said the breach could affect all of its four million users. All card details had a series of numbers hidden, TalkTalk said, and therefore were not usable for financial transactions e.g.