Revolut, one of the most popular fintech startups, has fallen victim to a cyber attack. Hackers compromised over 50,000 accounts. According to the company, the attackers held control of those accounts for “very little time”. TechCrunch reports that it was a matter of a few hours.
Revolut, which has 20 million users, announced that no money or full card data was stolen. The startup informed affected users via email about the incident.
The company also informed authorities in Lithuania, where it has a banking license, about the attack, which happened on September 10. The hackers stole information such as user names, real names, email addresses and phone numbers.
Revolut has announced that it will not contact customers affected by the attack by phone or send them SMS messages. Those who are approached in this way should be aware that this is a phishing campaign.
“We immediately identified and isolated the attack to drastically limit its impact and contacted affected customers. Customers who did not receive an email were not affected,” Revolut reported.
@RevolutApp I presume this is a text scam ? Just got it sent to me pic.twitter.com/mr0JrrYFDM
– ✨ [email protected] 📡🛰✨ (@satellitetruck) September 18, 2022
Screenshots of messages from the attackers, received by Revolut users whose accounts were compromised, have surfaced on social media.
According to rumors, the attack was made possible after hackers obtained a company employee’s network access data.
Last year, Revolut attracted a new round of investment worth $800 million, which brought the startup’s market value to $33 billion.