Eneco warns customers for data breach: 'Change your password, personal data may have been accessed'
Energy supplier Eneco is warning (former) customers of a possible data breach: they have established that cyber criminals have managed to gain access to the accounts of 1,700 customers and that personal information may have been stolen. What you need to know?
Last week, Eneco observed a number of irregular login attempts with what it says is a 'limited number' of My Eneco accounts: according to information on the website, these are the accounts of 1,700 customers. It is possible that personal data has been accessed, and for that reason customers will receive a warning.
Eneco itself describes the situation as follows: 'Cyber criminals have gained access to My Eneco accounts with e-mail addresses and passwords from previous thefts at other websites. Personal data (such as e-mail addresses and IBAN numbers) of customers has been viewed and possibly changed by third parties.
What do I need to know and what does this mean for me?
For the time being, it seems that Eneco has only approached customers who logged in last week with My Eneco or in the Eneco app, although that is more a matter of being on the safe side: if you have received an email, that does not mean by definition that your personal data has actually been viewed. The main question is therefore whether you logged in yourself last week or not.
Customers with accounts that Eneco knows with certainty that cyber criminals have seen, received an email on 8 January, and these accounts were closed and removed as a precaution. Customers who logged in the first week of January received an email on January 11, and this group needs to check a few things to determine whether they might be at risk.
Do it yourself logged in My Eneco Eneco or app? According to Eneco, this means that your account has not been viewed by cyber criminals and that you can log in with your previously chosen password. Nevertheless, customers are advised to change the password to be on the safe side.
On the other hand, did you not log in to My Eneco or the Eneco app yourself last week ? Then it may be that the attackers have also had access to your account. In that case, Eneco will refer you to the next page for additional information and the next steps to be taken. Eneco also advises customers to stay alert for suspicious emails and phishing attempts.
The data breach has been reported to the Dutch Data Protection Authority
Eneco has reported the leak to the Dutch Data Protection Authority and has also announced that it will take additional measures to prevent the risk of recurrence. The cause of the incident is also being further investigated.
Last week, Eneco observed a number of irregular login attempts with what it says is a 'limited number' of My Eneco accounts: according to information on the website, these are the accounts of 1,700 customers. It is possible that personal data has been accessed, and for that reason customers will receive a warning.
Eneco itself describes the situation as follows: 'Cyber criminals have gained access to My Eneco accounts with e-mail addresses and passwords from previous thefts at other websites. Personal data (such as e-mail addresses and IBAN numbers) of customers has been viewed and possibly changed by third parties.
What do I need to know and what does this mean for me?
For the time being, it seems that Eneco has only approached customers who logged in last week with My Eneco or in the Eneco app, although that is more a matter of being on the safe side: if you have received an email, that does not mean by definition that your personal data has actually been viewed. The main question is therefore whether you logged in yourself last week or not.
Customers with accounts that Eneco knows with certainty that cyber criminals have seen, received an email on 8 January, and these accounts were closed and removed as a precaution. Customers who logged in the first week of January received an email on January 11, and this group needs to check a few things to determine whether they might be at risk.
Do it yourself logged in My Eneco Eneco or app? According to Eneco, this means that your account has not been viewed by cyber criminals and that you can log in with your previously chosen password. Nevertheless, customers are advised to change the password to be on the safe side.
On the other hand, did you not log in to My Eneco or the Eneco app yourself last week ? Then it may be that the attackers have also had access to your account. In that case, Eneco will refer you to the next page for additional information and the next steps to be taken. Eneco also advises customers to stay alert for suspicious emails and phishing attempts.
The data breach has been reported to the Dutch Data Protection Authority
Eneco has reported the leak to the Dutch Data Protection Authority and has also announced that it will take additional measures to prevent the risk of recurrence. The cause of the incident is also being further investigated.
