I’ve heard a lot about this security breach at Loyaltybuild. How do I know if I am affected?
The company Loyaltybuild, based in Co Clare, is responsible for processing card details for loyalty schemes run by SuperValu, Axa, ESB and Stena Line, amongst others.
If you have been a customer of these companies since January 2011, you could be at risk. Specifically, the details of 70,000 SuperValu customers, who availed of their Getaway Breaks, 8,000 Axa Leisure Break customers and 6,800 ESB customers, have been stolen. Fifty Stena Line customers have also been affected.
It’s worth noting that the company also holds details of customers who took part in Clerys, Centra and Postbank loyalty schemes.
I did purchase a SuperValu break early last year. How can I find out if my details were definitely stolen?
If you’re an affected customer you will receive written and email communication. Many have already been informed. If you are worried, you should also contact the helpline on 0818 220 088.
It is also worth going over your credit card or debit card statements. Go through it meticulously and watch out for any transactions you cannot account for.
Suspicious small transactions should raise as much concern as large ones. These small transactions that you might overlook could be the hacker testing your account to see if it is a genuine card.
You should also be cautious about phone calls you receive from individuals saying they are from Loyaltybuild or SuperValu.
This could be a scam so never give your card details out over the phone. If you have been affected, it is necessary to request a new card from the bank.
If my details have been stolen, what information do these hackers possess?
If your details are stolen, the hacker could have your name, address, password, credit card or debit card details as well as expiry dates and credit verification values, which is the CVV number on the bank of your bank card. Basically, they have all the details they need to impersonate you and make an online purchase, so it is very important to cancel your cards.
Fortunately, if any fake transactions have already been made, you should be insured by your bank.
How did this happen and what is being done about it?
It is not clear when exactly Loyaltybuild was hacked, but it is thought to have been over a month ago. It cannot be determined exactly how the company files were acquired, but it could have been something as simple as an employee accidently entering log in details into a fake web page that the hackers set up in order to gain access.
In any event, it has been determined that their data management practises fell short of what was necessary.
Experts have pointed out that their level of data encryption and response time were poor. It is believed that Loyaltybuild kept customer details on file for much longer than it was necessary.
Does this mean that I shouldn’t input my details online?
Any time you input your credit card details online, you’re at risk of your account details being accessed.
However, this is also true if you insert your credit card into a machine in the supermarket till. There is always a risk and unfortunately we simply don’t know how well companies are securing our data.
After all, SuperValu is a supermarket that many of us trust.
If you do input your account details online, there is also a responsibility on you as the consumer. It is important to keep a close eye on your account details and as mentioned, watch out for any suspicious transactions.
In an effort to prevent this situation occurring again, the Consumer Association of Ireland is calling for all online companies handling financial data to be regulated by the Central Bank. CL
SHARING OPTIONS