This is what tarnishes the image of the neobank.
In an email sent to its affected customers, Revolut reveals that it "recently" suffered a "very targeted cyberattack" after which the hackers could have obtained confidential information.
More than 50,000 customers are affected.
“We immediately identified and isolated the attack to effectively limit its impact and contacted the affected customers,” a spokesperson for the company told the specialized newspaper TechCrunch, specifying that 0.16% of customers are affected and situating the attack on September 10.
According to Revolut's report to the Lithuanian authorities (on which it depends, thanks to a banking license), this corresponds to 50,150 customers, including nearly 20,000 located in the European Economic Area.
It is not known what information the hackers had.
Revolut just clarified that no funds were accessed or stolen.
“Your money is safe, as always, writes the company in the email sent to its affected customers, published on Reddit.
You can use your card and account normally.
"No card details, PIN or password have been consulted", but "you run an increased risk of fraud", she continues, calling to be "particularly vigilant against any suspicious activity, including including suspicious emails, phone calls or messages.
A special team in place
In the statement made to the Lithuanian authorities, available online, Revolut specifies that “access to the database was obtained through the use of social engineering methods”.
The hackers would therefore have succeeded in persuading a Revolut employee to give it access, without anyone knowing how they did it.
“We take incidents like these extremely seriously, and would like to sincerely apologize to all customers who have been impacted by this incident, as the security of our customers and their data is our top priority at Revolut” , said the spokesperson to TechChrunch.
The neobank has mobilized a “special” team to monitor the accounts of the customers concerned.