Earlier today, British police searched an address in Staffordshire and arrested another person on suspicion of committing computer crime offences in relation to the TalkTalk hack.
According to a press release issued by the Metropolitan Police, a 20-year-old man has been taken into custody at a local police station and the search at the address continues.
The arrested 20-year-old is the third person to be apprehended in connection with the TalkTalk hack, following the arrest of a 15-year-old boy in County Antrim, Northern Ireland, and the arrest of a 16-year-old male in Feltham.
Meanwhile, TalkTalk's CEO Dido Harding has issued a video statement describing that the extent of the data breach was "much smaller than originally suspected":
Here are the statistics that TalkTalk has shared regarding the stolen data:
- Less than 21,000 unique bank account numbers and sort codes
- Less than 28,000 obscured credit and debit card details (as previously stated, the middle 6 digits had been removed)
- Less than 15,000 customer dates of birth
- Less than 1.2 million customer email addresses, names and phone numbers
Harding says that TalkTalk needs to "work hard to earn back your trust".
She's right about that. Trust takes years to build, seconds to break, and can take forever to repair.
I was disappointed to read earlier today that victims of other TalkTalk security breaches, who lost thousands of pounds, are still being told by the company that it does not feel it is to blame for their losses and is refusing to pay compensation.
It's clear that those people would never have lost money if it had not been for TalkTalk's sloppy security. The company has failed to work hard enough to regain their trust, and those individuals will - no doubt - never deal with TalkTalk again, and will in the years to come warn their friends and family to stay well away from the firm.
Sometimes companies need to take things on the chin, and take the hit, in order to turn victims into brand advocates.