Wisepay data breach - school payments service - Data Leaks, Breaches & Hacks

School payments service Wisepay has suffered a data breach after hackers reportedly gained entry into their database and modified a page so they could steal payment details.

The Wisepay data breach is understood to have occurred on the 2^nd October 2020 and lasted for over two days.

Breaches of this kind that can expose customers’ payment details can be highly serious. Victims could be targeted for fraudulent payments, meaning that they may have to suspend their cards and monitor their accounts for suspicious activity. If fraudulent attempts are made, victims may have suffered financial loss before attempting to reclaim the money.

About the Wisepay data breach

The Wisepay data breach reportedly occurred between the evening of 2^nd October and 10am on 5^th October. We understand that hackers were able to gain access to their system and modified a payment page so it redirected customers to an external payment page, controlled by the hacker(s).

The page was ‘spoofed’ to look like a legitimate Wisepay website. In reality, it was a page controlled by the hackers. It meant that anyone inputting card payment details on the ‘spoof’ website was actually giving their details to a cybercriminal.

Wisepay took down the page as soon as the breach was discovered, but it is thought that attempted payments were made across around 300 schools over the course of the weekend. Wisepay has said that, as the system does not require daily payments, only a small number of parents should have been affected.

Victims warned to cancel payment cards

The Wisepay data breach has been reported to the Information Commissioners Office (ICO) and they are investigating exactly how many people may have had their card details stolen in the cyberattack. They are also working with a ‘cyber forensic agency’ to investigate the cyberattack further.

Wisepay, in a letter to schools, warned parents who thought they could have been affected to pause or cancel their payment cards. They also warned people to change any online banking passwords in a pre-emptive attempt to stop the hackers.

Wisepay has said it does not store any payment information itself and none of their own records were leaked. As such, if you did not attempt to make a payment to one of the 300 affected schools between 2^nd and 5^th October, Wisepay believes that it is likely you will not have been affected.

Can I make a compensation claim?

The investigation is still ongoing, but it is most likely that victims could be subject to credit card scams and fraudulent activity. If you have been told that your card was one of the ones affected in the breach, or if you have noticed suspicious activity on your account, you could be eligible to make a compensation claim.

You do not have to have lost any money to claim, as you can claim for the distress caused by the incident and the loss of control of our personal information.

We are experts in the complex area of data breach law and can help you fight for the compensation you deserve from the Wisepay data breach. We currently represent thousands of claimants across 50 different multi-party and group action claims and we are ready to help you.

Contact us today if you know or suspect you have been affected by the Wisepay data breach.

Start Your Claim

You can call our claims team free from a landline or mobile on 0800 634 7575 or click on the link below to create a call back with one of our expert Data Claims team.

Create A Call Back

Information on how we handle your data is available in our Privacy Policy.

The content of this post/page was considered accurate at the time of the original posting and/or at the time of any posted revision. The content of this page may, therefore, be out of date. The information contained within this page does not constitute legal advice. Any reliance you place on the information contained within this page is done so at your own risk.