Recently from a report, according to operator Camelot of National Lottery, about 26,500 accounts are feared to have been hacked. According to the firm, they don’t think that their systems were hacked and also said that the login details had been stolen from elsewhere.
The company also said that there was no loss of money to the accounts that were hacked. But they said that there was some kind of suspicious activity on few accounts like about 50 of them. And they got to know about it on Sunday.
The company stated that “We do not hold full debit card or bank account details in National Lottery players’ online accounts and no money has been taken or deposited. However, we do believe that this attack may have resulted in some of the personal information that the affected players hold in their online account being accessed.”
One of the spokesperson stated that the overall view of the accounts was observed and there were draws of about 9.5 million registered online players. Camelot has contacted to these accounts holders and asked to change their passwords reported by BBC.
A spokeswoman said, “Camelot submitted a breach report to us last night which we have reviewed. We will be talking to Camelot today, the Data Protection Act requires organizations to do all they can to keep personal data secure – that includes protecting it from cyber attacks. Where we find this has not happened, we can take action, Organizations should be reminded that cyber security is a matter for the boardroom, not just the IT department”.
Camelot stated after the hack “We are currently taking all the necessary steps to fully understand what has happened, but we believe that the email address and password used on the National Lottery website may have been stolen from another website where affected players use the same details”.
Troy Hunt said, “If there are 26,500 accounts here and they are saying the credentials are correct but they didn’t come from us, they still let an attacker log in 26,500 times.”