On December 10, 2023, EasyPark announced that it had fallen victim to a cyber attack that compromised non-sensitive customer data. The company has been proactive in addressing the breach, and it communicated essential steps taken to protect customer information and maintain operational integrity.
"We took swift measures to stop the cyber attack," said Sandesh Bhat, Chief Technology Officer of EasyPark Group. The organization ensured that its services continued to function normally while promptly notifying the necessary authorities about the breach.
"We took swift measures to stop the cyber attack,"
Upon discovery, EasyPark reset passwords for all customers whose information may have been compromised. "Our security team, including external security experts, is working hard to ensure effective security and privacy measures are in place," Bhat added, emphasizing the company's commitment to customer safety and security.
"Our security team, including external security experts, is working hard to ensure effective security and privacy measures are in place,"
Affected customers received notifications regarding the breach, including the types of information that might have been accessed. "If you were affected, some contact information you may have provided to us (such as name, phone number, physical address, and/or email address) were accessed," announced Miles Hutchinson, Chief Information Security Officer at EasyPark Group.
"If you were affected, some contact information you may have provided to us (such as name, phone number, physical address, and/or email address) were accessed,"
Although some credit card and debit card details were also accessed, the company clarified that only partial digits were exposed. "However, someone cannot make payments using this incomplete information," Hutchinson explained, highlighting that the stolen data cannot be utilized to conduct transactions.
"However, someone cannot make payments using this incomplete information,"
Despite the measures taken, EasyPark is aware that concerns surrounding data breaches are valid and can cause anxiety among users. "We are deeply sorry this happened and will continue to work hard every day to earn your trust," Bhat remarked, conveying the company's genuine regret regarding the incident.
"We are deeply sorry this happened and will continue to work hard every day to earn your trust,"
Customers have also been warned to remain vigilant regarding potential phishing attempts that can arise following a cyber breach. The company has issued guidance, stating, "As always, you should be mindful of phishing attempts, which are unfortunately common." Customers who received notifications regarding the breach were advised that the hashed version of their passwords was accessed, reinforcing the importance of using unique passwords across different platforms.
As of January 18, 2024, EasyPark has updated its customers regarding actions taken since the incident and continues to encourage any affected customers to modify their passwords where needed. For further inquiries, the company invites customers to reach out to their Customer Care or consult the company's Privacy Policy for deeper insights into data protection measures.
Looking Ahead
Post-breach, EasyPark is focused on enhancing its security protocols to prevent future incidents. The company is dedicated to regaining trust while ensuring that operational reliability remains intact. As ongoing developments unfold, customers may continue to monitor communications from EasyPark for updates on security measures and data protection initiatives.