cyber Breach

npower

Jun 22, 2022 1 min read
npower

UK energy company Npower suffered a data security breach after which it permanently closed its mobile app due to sensitive information data leaks from customers.

The attackers used a ‘credential stuffing’ type attack to access customer accounts using login data stolen from another website and targeted its mobile app activity.

Npower even informed all the affected customers & advised them to change their passwords as soon as possible.

Source: https://www.cybernewsgroup.co.uk/npower-shuts-down-mobile-app-following-data-breach-will-not-turn-back-on/

TPRM report: https://scoringcyber.rankiteo.com/company/npower-

"id": "npo2241622",
"linkid": "npower-",
"type": "Breach",
"date": "02/2021",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"
{'affected_entities': [{'industry': 'Energy',
                        'location': 'UK',
                        'name': 'Npower',
                        'type': 'Company'}],
 'attack_vector': 'Credential Stuffing',
 'customer_advisories': ['Informed affected customers',
                         'Advised customers to change passwords'],
 'data_breach': {'type_of_data_compromised': ['sensitive information']},
 'description': 'UK energy company Npower suffered a data security breach '
                'after which it permanently closed its mobile app due to '
                'sensitive information data leaks from customers. The '
                'attackers used a ‘credential stuffing’ type attack to access '
                'customer accounts using login data stolen from another '
                'website and targeted its mobile app activity. Npower even '
                'informed all the affected customers & advised them to change '
                'their passwords as soon as possible.',
 'impact': {'data_compromised': ['sensitive information'],
            'operational_impact': 'Permanent closure of mobile app',
            'systems_affected': ['mobile app']},
 'initial_access_broker': {'entry_point': 'mobile app'},
 'post_incident_analysis': {'corrective_actions': ['Informed affected '
                                                   'customers',
                                                   'Advised customers to '
                                                   'change passwords'],
                            'root_causes': ['Reused login credentials from '
                                            'another website']},
 'response': {'communication_strategy': ['Informed affected customers'],
              'containment_measures': ['Permanent closure of mobile app'],
              'remediation_measures': ['Informed affected customers',
                                       'Advised customers to change '
                                       'passwords']},
 'title': 'Npower Data Security Breach',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Reused login credentials from another website'}
Published by
Harshit Kaur Bhatia
Harshit Kaur Bhatia
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.