Compromised data was used to make unauthorised purchases in fewer than 400 cases
Company has blamed customers for data breach
Attackers stole personal data by guessing login credentials
Attackers used login details obtained from third-party platforms
Npower will not turn its mobile app back on after the attack
Boots claims it acted after identifying a credential-stuffing cyber attack
TfL acts for a second time following August security breach - again blaming the risk of credential stuffing
Half of all phishing attacks are targeting the financial sector, warns Akamai