Retailer Tesco PLC’s banking arm on Tuesday said that £2.5 million (US$3 million) had been stolen from 9,000 customers over the weekend in what cyberexperts said was the first mass hacking of accounts at a Western bank.
Tesco Bank said it had resumed full service after the theft, which forced the suspension of online transactions on Monday.
“We’ve now refunded all customer accounts affected by fraud and lifted the suspension of online debit transactions so that customers can use their accounts as normal,” Tesco Bank CEO Benny Higgins said in a statement.
The bank, whose operating income has accounted for as much as a quarter of Tesco’s total in some years, added that no customer data had been compromised.
The National Cyber Security Centre (NCSC), a new government body, on Tuesday said that it was working with criminal investigators and Tesco to understand the nature of an attack described as “unprecedented” by the financial regulator.
The NCSC and National Crime Agency said they could not remember another confirmed case where thieves had stolen large sums of money via a mass hacking of accounts at a Western bank.
The bank has provided few details about what happened. It is not clear how online thieves broke into the bank, how they pulled out the funds or how much was stolen. It is also not clear if there are any suspects.
A spokeswoman for Tesco declined to comment beyond its previous statement on Monday.
Cyberexperts said that smaller banks, like Tesco’s, are more vulnerable to attack than global financial institutions, which have bigger cybersecurity budgets.
JPMorgan, for example, has disclosed that it spends about US$600 million on cybersecurity annually.
“Smaller and medium-sized companies may be more vulnerable; many of them have not invested properly in security measures and an incident like this should stimulate them to think again,” said Sergio Romanets, a cybersecurity expert at consultant Greyspark Partners in London.
Cyber and information technology (IT) security risks have received little coverage in Tesco Bank’s most recent annual report, according to a Reuters analysis, with just one mention — saying “of note is the industry-wide attention on cyber-crime”.
Rival J. Sainsbury PLC’s bank unit and Metro Bank PLC, two other smaller “challenger” banks in Britain, each mention cyber and information security at least three times in their most recent annual reports. By contrast, among the nation’s biggest banks, Santander UK has at least 49 mentions, Barclays at least 14 and Lloyds 32.
Tesco Bank runs on separate IT systems from the group’s retail unit. The lender was originally set up as a joint venture with Royal Bank of Scotland (RBS) and Tesco PLC in 1997, before becoming wholly owned by the retailer in 2008.
US financial technology provider Fiserv provides its online retail banking platform and its financial crime prevention system, according to Fiserv’s Web site.
“There is no indication that our software or services were involved in the incident that Tesco Bank experienced over the weekend. Nonetheless, we are offering our support in whatever manner will be helpful to Tesco Bank,” a spokeswoman for Fiserv said in an e-mailed statement.
Tesco Bank has spent £500 million building up its technology platform over the past seven years since the split with RBS, accounts showed.
Britain’s financial regulator sought to reassure the public that financial authorities were working to understand the nature of the attack.
On Monday, British lawmaker Andrew Tyrie, chair of parliament’s powerful finance committee, said both banks and regulators had done too little to improve cybersecurity.
Reported attacks on financial institutions in Britain have risen from just five in 2014 to more than 75 so far this year, according to Financial Conduct Authority data, but bank executives and providers of security systems say many attacks go unreported.
STIMULUS PLANS: An official said that China would increase funding from special treasury bonds and expand another program focused on key strategic sectors China is to sharply increase funding from ultra-long treasury bonds this year to spur business investment and consumer-boosting initiatives, a state planner official told a news conference yesterday, as Beijing cranks up fiscal stimulus to revitalize its faltering economy. Special treasury bonds would be used to fund large-scale equipment upgrades and consumer goods trade-ins, said Yuan Da (袁達), deputy secretary-general of the Chinese National Development and Reform Commission. “The size of ultra-long special government bond funds will be sharply increased this year to intensify and expand the implementation of the two new initiatives,” Yuan said. Under the program launched last year, consumers can
Citigroup Inc and Bank of America Corp said they are leaving a global climate-banking group, becoming the latest Wall Street lenders to exit the coalition in the past month. In a statement, Citigroup said while it remains committed to achieving net zero emissions, it is exiting the Net-Zero Banking Alliance (NZBA). Bank of America said separately on Tuesday that it is also leaving NZBA, adding that it would continue to work with clients on reducing greenhouse gas emissions. The banks’ departure from NZBA follows Goldman Sachs Group Inc and Wells Fargo & Co. The largest US financial institutions are under increasing pressure
FUTURE TECH: Nvidia CEO Jensen Huang would give the keynote speech at this year’s Consumer Electronics Show, which is also expected to highlight autonomous vehicles Gadgets, robots and vehicles imbued with artificial intelligence (AI) would once again vie for attention at the Consumer Electronics Show (CES) this week, as vendors behind the scenes would seek ways to deal with tariffs threatened by US president-elect Donald Trump. The annual Consumer Electronics Show opens formally in Las Vegas tomorrow, but preceding days are packed with product announcements. AI would be a major theme of the show, along with autonomous vehicles ranging from tractors and boats to lawn mowers and golf club trollies. “Everybody is going to be talking about AI,” Creative Strategies Inc analyst Carolina Milanesi said. “From fridges to ovens
Twenty years after he was a young, struggling actor in Toronto, Thomas Lo (盧瑞麟) is now the one giving young Asian actors their big breaks. He just had to go to Hong Kong to do it. The Chinese Canadian has been the creative director of one of the territory’s biggest TV broadcasting companies for only a few years, but is already making original English-language content to reach viewers around the world. “It was a bit of a full-circle moment for me,” Lo said. “You see more Asians, but you’re still seeing the same Asians on screen, right? We’re looking for more opportunities
RSS