The stolen data of users for cyber attack to El Corte Inglés go on sale: what do you have to do

It was earlier this March when it was detected that personal contact data and card numbers used to make purchases for thousands of users of El Corte Inglés were exposed in a computer attack suffered by one of the company’s technological providers.

After clarifying that this attack was identified and corrected immediately, El Corte Inglés explained that they have put the facts to the knowledge of the authorities and that they have required their supplier “the application of additional measures that prevent this type of incidents In the future. “

However, users’ personal data, as are Used card numbers for purchases only in El Corte Inglés They were left to the hackers. While the company has assured that “such information It does not allow third parties to operate or make payments With its El Corte Inglés card, there are still several threats that we must prevent.

For example, with the exposed data they can supplant our identity, send us phishing attacks to get new information, such as passwords or bank data or directly that put our data in the Deepweb and end up being victim of spam campaigns and other cyber attacks.

And this is precisely what has happened, and as numerous people have detected, these data have been put on sale in a well -known computer pirate forum called Breachforums. In it It has been put up for sale for $ 15,000 the stolen database of the English Court with supposedly 12 million data that comprise names, surnames, telephone numbers, emails and the English Court cards.

OCU’s recommendations in front of cyber attack to El Corte Inglés

To do this, experts from the Organization of Consumers and Users are recommending to the clients of El Corte Inglés to extreme precautions, and among the measures for this stand out:

• The English Court ensures that it can continue to be operating without risk.
• From the English Court They are not going to contact passwords or data. If they call you or send a message, they are not them.
• Before any call, email or sms unexpected or suspicious, distrust and Get in touch with the sender to confirm that this message on another different way.
• Watch your card extracts well: any possible position that after this attack makes in your account and has not been authorized and must reimburse it.