International parcel courier service Fastway Couriers has revealed that they suffered a data breach that was identified by a third-party IT service provider on February 25th, 2021 and Fastway was notified on March 2nd, 2021. The breach exposed the data of 446,143 people that ordered items in January. Fortunately, the company does not believe any financial information was included and the exposed data only included names, physical addresses, email addresses, and phone numbers. After noticing the breach on February 25th, the security vendor was able to mitigate the breach less than 24 hours later, but it was likely that the data had already been vulnerable for some time before that. Chief executive Danny Hughes of Fastway assured customers that the company would continue to work with the Data Protection Commission and other entities in order to fully take care of the issue.
Analyst Notes
Customers who may have had their information exposed should receive an alert from Fastway or one of their clients. It should be warned that targeted phishing attacks taking advantage of the exposed information may be carried out in the future. Since Fastway already stated that they engaged the services of an IT consultancy to conduct a review, they will likely have better protection methods in place in the future.
Source: https://www.irishtimes.com/news/ireland/irish-news/cyberattack-on-fastway-couriers-compromises-contact-details-1.4508084
