Scam?

born_again

If in doubt for £25 for 2 years.

https://www.cifas.org.uk/pr

But be aware this will mean checks/Delays on DD's etc being set up.

TnTtherevelators

I received mine today. Never heard of them, don’t know how I could be on their database but interested to see that in the States (where they’re based) it seems someone is trying to sue them for negligence for the breach and then taking so long to inform people. If the breach happened in November why are their ‘clients’ only just being informed now? Who knows what may have happened in the meantime in terms of people trying to scam or spam? 

madbutcher

Hubby and I have both just received identical letters today - naturally we're quite concerned.   We have had ppi claims in the pat but that was several years ago.    Just needing some advice as to whether we should just ignore this or do as they suggest on the letter

flaca

My wife and I received the same letter. My wife's letter used her maiden name, and there's only really one financial company that can related to. Not sure if anyone has said but there is a class action lawsuit being launched in the US related to the data breach, so looks like international impact. 

Regarding Kroll Monitoring, it looks legit. Kroll are a well-known risk managment company, and you can navigate to Kroll Monitoring via the main Kroll website - the main website takes you to the same url that is written in the letter so just navigate from the main Kroll website if you have doubts (which I did).

I signed up, why not. Once you've entered the activation code, you need to spend some time adding various accounts, which I will do at some point.  

SJP_UK

I got one of these letters today.  So I looked up the company - Cadwalader (which is legit), I went to their website and got their London telephone number - 02071708700 - they told me the letter was legit and that it was the result of a cyber attack.  They told me to ring the 0800 number on the letter.  So I did, I asked them where my data had come from as I had not dealt with the Cadwalader company before.  They said that personal data is shared with them from 3rd parties and it may have come from one of those.  They took my email address (I used a gmail "spare" one for spam etc) and my mobile number and they said they would come back to me within 40 hours to tell me where my personal data had been shared from.....we shall see....

flaneurs_lobster

SJP_UK said:

I got one of these letters today.  So I looked up the company - Cadwalader (which is legit), I went to their website and got their London telephone number - 02071708700 - they told me the letter was legit and that it was the result of a cyber attack.  They told me to ring the 0800 number on the letter.  So I did, I asked them where my data had come from as I had not dealt with the Cadwalader company before.  They said that personal data is shared with them from 3rd parties and it may have come from one of those.  They took my email address (I used a gmail "spare" one for spam etc) and my mobile number and they said they would come back to me within 40 hours to tell me where my personal data had been shared from.....we shall see....

Not sure what it is you are trying to ascertain here. If they come back to you and say "not found" then that would only refer to your "spare" email address. Did they take other details? I guess your name is a given since they wrote to you.

debt_buster_4

flaca said:

My wife and I received the same letter. My wife's letter used her maiden name, and there's only really one financial company that can related to. Not sure if anyone has said but there is a class action lawsuit being launched in the US related to the data breach, so looks like international impact. 

Regarding Kroll Monitoring, it looks legit. Kroll are a well-known risk managment company, and you can navigate to Kroll Monitoring via the main Kroll website - the main website takes you to the same url that is written in the letter so just navigate from the main Kroll website if you have doubts (which I did).

I signed up, why not. Once you've entered the activation code, you need to spend some time adding various accounts, which I will do at some point.  

I'd be very careful if asking to add accounts. They could use the info. How do you know they didn't have access to a form of photographic ID very often stored nowadays as ? If they have, a passport say, they could open anything in your name or possibly carry out transactions using it for 2 factor authentication. 

debt_buster_4

I received one of these today. I noticed the following on a website... 'the New York-based law firm’s systems were breached between November 15 and 16 of last year by an unauthorized actor who gained access to files containing consumers’ names, Social Security numbers and shareholding information (which may have included financial accounts, trading history, holdings and balances). It wasn’t until March 30, 2023 that Cadwalader informed victims of the incident'
I do hold shares in the US so wondered if it was to do with those. I don't have any other related business in the US. 

debt_buster_4

debt_buster_4 said:

I received one of these today. I noticed the following on a website... 'the New York-based law firm’s systems were breached between November 15 and 16 of last year by an unauthorized actor who gained access to files containing consumers’ names, Social Security numbers and shareholding information (which may have included financial accounts, trading history, holdings and balances). It wasn’t until March 30, 2023 that Cadwalader informed victims of the incident'
I do hold shares in the US so wondered if it was to do with those. I don't have any other related business in the US. 

Link here...
www.classaction.org/news/cadwalader-wickersham-and-taft-hit-with-class-action-over-november-data-breach

debt_buster_4

SJP_UK said:

I got one of these letters today.  So I looked up the company - Cadwalader (which is legit), I went to their website and got their London telephone number - 02071708700 - they told me the letter was legit and that it was the result of a cyber attack.  They told me to ring the 0800 number on the letter.  So I did, I asked them where my data had come from as I had not dealt with the Cadwalader company before.  They said that personal data is shared with them from 3rd parties and it may have come from one of those.  They took my email address (I used a gmail "spare" one for spam etc) and my mobile number and they said they would come back to me within 40 hours to tell me where my personal data had been shared from.....we shall see....

I find it odd that they don't have an individual reference on the letter. Usually you would see 'Our reference' or something to that effect.