Virgin have suffered a huge data breach. See below for email sent to customers and non customers who virgin appeared to hold data for.


Hello,
We are very sorry to have to inform you that we recently became aware that some of your personal information, stored on one of our databases has been accessed without permission. Our investigation is ongoing but we currently understand that the database was accessible from at least 19 April 2019 and that the information has been recently accessed.

To reassure you, the database did NOT include any of your passwords or financial details, such as bank account number or credit card information.

The database was used to manage information about our existing and potential customers in relation to some of our marketing activities. This included: contact details (such as name, home and email address and phone numbers), technical and product information, including any requests you may have made to us using forms on our website. In a very small number of cases, it included date of birth. Please note that this is all of the types of information in the database, but not all of this information may have related to you.

We take our responsibility to protect your personal information seriously. We know what happened, why it happened and as soon as we became aware we immediately shut down access to the database and launched a full independent forensic investigation. We have also informed the Information Commissioner’s Office.

Given the nature of the information involved, there is a risk you might be targeted for phishing attempts, fraud or nuisance marketing communications. We understand that you will be concerned so we are writing to everybody affected to provide reassurance, guidance and support. We have put all of the latest information on our website https://www.virginmedia.com/help/data-incident, including some advice on how to stay safe online, such as:
• Advice from the Information Commissioner's Office on how you can avoid or report nuisance marketing calls, emails and texts (https://ico.org.uk/)
• How to be vigilant by not providing your personal information to anyone suspicious online, by phone, email or text. If you want more information, you can get it here https://www.getsafeonline.org/protecting-yourself/...
• How you can protect yourself from the risk of identity theft (which is when someone uses someone else’s personal information to obtain goods, services or money without permission) and other types of fraud. The Information Commissioner’s Office has information online here https://ico.org.uk/your-data-matters/identity-thef...
Although no financial, banking details or account passwords were accessed, it is always a good idea to make sure that your passwords are strong and not easy to guess. There is some advice here on how to set a strong password https://www.virginmedia.com/help/how-to-create-a-s...
If having read this email and visited our website you still have questions, you can contact us on 0800 052 2621, but please be aware our customer service advisors do not have any further information at this stage.
Once again, we sincerely apologise for what has happened.

Not surprising. They outsourced a load of data sensitive jobs abroad a few years back

Here is a thing...

Your email address, DOB and address might have been obtained.

Erm, so what?

Lol, that's them! They do that all the time anyway

Don’t they have a duty to keep YOUR data safe?

We have also seen an increase in nuisance calls the last couple of weeks. Maybe Virgin could give us call blocker for free as a bit of compensation.

It’s a Mr. E mystery Mr E!

Slightly OT, but Google doesn't honour '.' characters in the local-part of @gmail.com addresses. I registered mine back in the mists of time, which does have '.' characters in the local-part, but it appears that various folk in the US still think their email address is differentiated from it. Hence I'm repeatedly signed up on the email list of a prayer group in Oregon, a Ford dealership in Texas, and have had a number of presumably confidential US tax and HR details from randoms who can't remember their email address properly sent through to me.

It's very odd. I assume these folk keep putting their variations of the address into various sites, never see a response, but keep doing so. The ones with obviously confidential details I respond to the admin pointing out the error, and generally never hear from them again.

I've given up trying to unsubscribe from the prayer group, and they keep sending me - or rather, the misspelled version of me - invocations to pray for generally elderly parishioners in Pendleton, Oregon who have invariably grim medical prognoses. Actually, I'm rather dreading that if this virus kicks off big time in the US quite how much praying might be requested.

Ditch the landline.
You won't regret it!

My wife's dad is the only person to use it. He refuses to accept that a calling a mobile doesn't actually cost both parties.

All calls go straight to answerphone, including his, so it really isn't any kind of inconvenience to have a landline. Whilst I probably won't regret ditching it, I also suspect I will be entirely ambivalent if I were to do so.