17,000 Tesco customers hit by Travelex data breach

Ttesco twohousands of Tesco customers have had their personal details exposed – including date of birth, home and mobile phone numbers, addresses, and email addresses – following a data leak at the supermarket’s travel cash supplier Travelex.
Travelex, which runs the Tesco Travel Money online and telephone ording service, confirmed over 17,000 customers could have been affected. The compromise also includes emails sent from staff to customers and internally.
All customers who bought currency online between December 14, 2016 and January 23, 2017, have been contacted by email explaining the breach, although Travelex insists that no financial details have been compromised. All have been offered a free year-long identity fraud protection service through Experian.
The company – claimed to be the biggest foreign exchange business in the world – insists it is carrying out an urgent investigation into how the details were leaked; however, initial findings point to human error, rather than a hack attack.
A Travelex spokesman said: “We are urgently investigating how some customer data was recently discovered to have been disclosed externally. All affected customers have been contacted with advice on what precautionary action to take. We are confident that no financial information has been disclosed.
“The security of our customers’ information is paramount and a full investigation is underway. We are sorry to all our customers affected if there has been any inconvenience caused as a result of this incident.”
In 2016, Tesco Bank was forced to apologise after a hack attack on its online systems saw up to 20,000 current accounts emptied by fraudsters, with some losing thousands of pounds.

Related stories
Millions of Instagram users hit by major hack attack
Data breach at games giant CeX hits 2m customers
Data breaches ‘hit shares, sales and growth for years’
20,000 Tesco Bank accounts raided in hack attack
Thousands warned ‘it could be you’ in Camelot hack
Takeaway fans hit where it hurts in Deliveroo breach
Adult site confirms 419m users have been exposed

Print Friendly