Electric Ireland contacts thousands of customers amid data breach fears
Electric Ireland has contacted 8,000 customers it suspects has had their personal data compromised.
A statement on the company’s website said it was aware that an employee of a company working on its behalf may have inappropriately accessed customer accounts, leading to the potential misuse of personal and financial information.
The statement continued: “Our investigations have established that approximately 8,000 customer accounts may have been compromised. Electric Ireland has written to all potentially impacted customers to make them aware of the issue and provide advice and instructions on what actions to take to mitigate against the risk of potential financial fraud. Customers who have not received a letter from Electric Ireland do not need to take any action.”
Electric Ireland said the issue is under investigation and it was liaising with An Garda Siochana and the Data Protection Commissioner.
Electric Ireland has warned customers to be vigilant for unusual activity on their financial accounts in relation to data given to Electric Ireland, and to contact the company directly if any is found. Electric Ireland said it would inform An Garda Síochána directly. Customers are also advised to contact their bank separately.
“The data breach at Electric Ireland is yet another reminder of the critical importance of employee awareness and a strong cybersecurity culture within an organisation,” commented Javvad Malik, lead security awareness advocate at KnowBe4. “The fact that an employee of a contracted company had the ability to inappropriately access customer accounts is concerning and highlights the need for robust security measures. Organisations should ensure that comprehensive security controls are implemented, including employee training on data protection principles, access control, and monitoring systems. Regular security assessments and audits can help identify vulnerabilities and mitigate risks.
“In the event of a data breach, timely communication and transparency are key. Electric Ireland’s confirmation of the breach and their awareness of the potential misuse of personal and financial information is a step in the right direction. This incident emphasises the need for organisations to thoroughly vet and monitor third-party vendors and contractors who have access to sensitive customer data. It’s crucial to establish contractual obligations for maintaining data security and ensure adherence to proper security practices. Ultimately, organisations must continuously prioritise cybersecurity and view it as an ongoing process rather than a one-time implementation. Constant vigilance, employee education, and a proactive approach to security are critical elements in safeguarding customer data and maintaining customer trust.”
Electric Ireland has 1.1 million residential accounts.
TechCentral Reporters
Subscribers 0
Fans 0
Followers 0
Followers