All potentially affected individuals should be vigilant of any suspicious or unsolicited communications (as they should in the normal course) and are advised to contact their financial institution or other providers directly if they have any concerns about any calls or communications purporting to come from any such providers.  As always, any suspicious transactions or activity on a bank account should be immediately notified to the relevant financial provider.

In accordance with recommended guidance, individuals should never disclose any personal data (including passwords, usernames or PIN numbers) in response to an unsolicited call or communication (such as SMS, email or phone call even if it appears to be legitimate) or click on any links or open any attachments contained in such communications.

If you have doubts about the validity of a communication or caller, please contact the institution directly using the contact details published by that institution (and not those contained in an unsolicited communication). You should also never disclose full PIN numbers or passcodes to any third party and your financial institution will never ask you for these. 

As a matter of good practice, you should continue to follow the general fraud prevention advice given in our general communications or visit www.fraudsmart.ie.

The National Cyber Security Centre and An Garda Síochana and the Banking and Payments Federation of Ireland have published guidance to educate the public about how to protect yourself from fraud which are available at NCSC and BPFI.

 

 

How can I know if my personal data was accessed in the breach?


The issuing of direct communications by email or post to affected individuals in accordance with our data subject notification obligations has commenced. It is envisaged that these notifications will take several weeksstart to issue in the coming weeks, on a priority basis.


This direct communication will let recipients know what kind of personal information was released and of measures that should continue to be taken to mitigate any risk that personal data may be used unlawfully. 

This is expected to take several weeks to complete and we will issue a further update once all communications have issued.