Travelex Slowly Recovering From Ransomware Attack

The boss of Travelex has finally spoken out about a cyberattack that forced its staff to use pen and paper and halted travel money sales at some banks and supermarkets.

Travelex has restored some of its systems after a New Year’s Eve cyberattack left customers unable to exchange foreign currency online at some of Britain’s biggest banks. Travelex is still declining to say if it has paid a ransom to the criminals responsible.

The travel money provider said it had managed to restore the automated order placement used by several UK high street banks and would relaunch its international money transfer service by the end of January.However, other Systems remain Offline

The firm has released a number of short statements since cyber criminals held the firm to ransom on 31 December.But in a video message on the firm's website, boss Tony D'Souza said the IT system used by in-store staff was working again. Travelex, which is the world’s largest currency dealer, shut down its systems after a cyberattack on New Year’s Eve. It had still managed to process orders in store but was forced to use pen and paper to track them.

Some of Britain’s biggest banks were caught up in the outage, forcing their online customers to find other ways to buy cash for their holidays.

Banks will now be able to do in-store orders for home delivery and for collection in branch. However, Travelex will initially only offer 70 currencies, with more coming online later. The major currencies are understood to have been prioritised. While D’Souza said the system used by staff is now working, there was no word on when the firm's main UK website would be returned to service. He offred some  to reassurance over public concerns that user data may have been put at risk, saying that Travelex has “not uncovered any evidence to suggest that any customer data has left the organisation”.

The company said automated order placement systems used by UK banking partners, which include HSBC, Barclays and Virgin Money, were now live. RBS and Tesco Bank later reported that their respective travel money sites, powered by Travelex, remained offline. That means customers are still unable to order currency online, either from Travelex itself or through the network of banks that use its services, including Barclays, Lloyds, RBS, and the finance websites of Sainsbury's and Tesco.

Travelex has said very little publicly since hackers held its systems to ransom by encrypting its digital files, reportedly demanding somewhere between £3m amd $6m to unlock that data.

Mr D'Souza said it was "not appropriate" to discuss details of the attack, adding that an investigation was ongoing. "To date, there is no evidence that any data has left the organisation," he told the BBC. The hackers, a gang called Sodinokibi, have told the BBC they gained access to the company's computer network six months ago and claim to have downloaded 5GB of sensitive customer data caliming that dates of birth, credit card information and national insurance numbers are all in their possession, they said. 

Travelex said it is working closely with the Metropolitan Police, which is leading the investigation into the attack.

BBC:        Barhhead News:            Sky News:         Graham Cluely:       Realwire:

You Might Also Read:

30% Of Business Leaders Would Pay Ransom:

New Ransomware Formats Double:

« Publishers Spread Fake News
GDPR Data Breach Notifcations & Fines Are Increasing »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

AV Test

AV Test

The AV-TEST Institute is a leading international and independent service provider in the fields of anti-virus research and IT security.

Promon

Promon

Promon is an application security vendor providing Self-Protection abilities to Mobile apps and Desktop applications.

Fortress Group

Fortress Group

Fortress is specialized in confidential and discrete recruitment solutions and temporary staffing in the field of security and risk management.

Flexera

Flexera

Flexera is reimagining the way software is bought, sold, managed and secured.

Learning Tree International

Learning Tree International

Learning Tree's comprehensive cyber security training curriculum includes specialised IT security training and general cyber security courses for all levels of your organisation including the C-suite.

CipherTrace

CipherTrace

CipherTrace develops cryptocurrency Anti-Money Laundering, cryptocurrency forensics, and blockchain threat intelligence solutions.

Hack The Box

Hack The Box

Hack The Box is an online platform allowing you to test your penetration testing skills and exchange ideas and methodologies with thousands of people in the security field.

Dell Technologies

Dell Technologies

Dell Technologies Consulting Services enables a highly resilient business amidst the proliferation of cloud-based IT services and constant threats to your most critical information.

Italtel

Italtel

Italtel is a multinational ICT company that combines networks and communications services with the ability to innovate and develop solutions for digital transformation.

Banshie

Banshie

Banshie is an independent cyber security company with a small team of recognized specialist that are among the best in their field.

Dcode

Dcode

Dcode connects the tech industry and government to drive commercial innovation in the federal market.

Bytes Technology Group

Bytes Technology Group

Bytes is a leading provider of world-class IT solutions. Our growing portfolio of services includes cloud, security, licensing, SAM, storage, virtualisation and managed services.

Appurity

Appurity

Appurity specialises in mobile and application security, delivering comprehensive solutions across all verticals.

Microminder Cyber Security

Microminder Cyber Security

Microminder Cyber Security are innovators, advisors, strategists committed to solving your cyber security challenges.

Ministry of Electronics & Information Technology (MeitY)

Ministry of Electronics & Information Technology (MeitY)

The Ministry of Electronics & Information Technology is an executive agency responsible for IT policy, strategy and development of the electronics industry.

Acumen

Acumen

Acumen's cyber security engineers protect your critical systems, in critical moments. We are here when you need us most.