/security

News and resources on cyber and physical threats to banks and fintechs worldwide.

Npower scraps mobile app after hackers breach customer accounts

Npower, one the UK's big six energy providers serving serving 3.6 million residential and business accounts, has shut down its mobile app after hackers accessed customers accounts, inluding partial bank details.

  1 1 comment

Npower scraps mobile app after hackers breach customer accounts

Editorial

This content has been selected, created and edited by the Finextra editorial team based upon its relevance and interest to our community.

Npower says customer accounts were accessed using login data obtained from other websites - a common technique used by hackers, known as 'credential stuffing'.

The firm won't say how many accounts were hacked, though it says not all accounts were affected and customers whose accounts were accessed have now been contacted.

Data at risk includes personal information, such as dates of birth and addresses, bank sort codes and the last four digits of account numbers, and contact preferences.

An Npower spokesperson says: "We immediately locked any online accounts that were affected, blocked suspicious IP addresses and deactivated the Npower app. We’ve also notified the Information Commissioner’s Office and Action Fraud. Protecting customers’ security and data is our top priority."

Npower says it has shut down its app in the wake of the attack and does not intend to relaunch it.

Sponsored [Webinar] 2025 Fraud Trends: Synthetic Identity, AI and Incoming Mandates

Related Company

Comments: (1)

A Finextra member 

"Data at risk includes personal information, such as dates of birth and addresses, bank sort codes and the last four digits of account numbers, and contact preferences." ......

Why on earth does a Utility company want to know dates of birth? The more data they ask for the greater the risk of data impersonation surely?

[Webinar] Unifying Card Programmes: The cost-reduction imperativeFinextra Promoted[Webinar] Unifying Card Programmes: The cost-reduction imperative