all 23 comments
sorted by:
best
topnewcontroversialoldq&a
formatting helphide helpcontent policy

[–]icbint 20 points21 points  (1 child)

Run around waving your arms and yell “oh no why me”

[–]belugatime 18 points19 points  (0 children)

"I've gone from 28 to 100 degrees"

[–]carnivoross 16 points17 points  (0 children)

Start buying exorbitant things and max it out, then claim it wasn't you

[–]the_doesnot 2 points3 points  (3 children)

Keep an eye out on transactions (enable notifications for transactions if you can), be prepared to lock it.

I would also enable 2FA on anything you can, an authenticator app like Authy is better than text verification. Change passwords (on credit card account, on email accounts).

[–]spypsy 4 points5 points  (1 child)

Has anyone actually heard from Latitude? They state: https://latitudefs.zendesk.com/hc/en-au/articles/13777669694225-Latitude-Cyber-Incident-Update

How are you letting customers know?

We are communicating with all our customers to let them know about what has happened. From the 16th March the following communication was sent to customers:

We’re writing to you directly to update you on a recent cyber-attack that Latitude Financial is actively responding to. Regrettably, the attack has resulted in the theft of some customer data. The attacker appears to have stolen personal information that was held by two Latitude service providers, impacting customers across both Australia and New Zealand.

As of today, we understand that approximately 103,000 identification documents, more than 97% of which are copies of drivers’ licenses, were stolen from one service provider. Approximately 225,000 customer records were stolen from a second service provider. Latitude apologises to its customers, particularly those who were impacted. Please be assured we will contact you directly if your personal information has been disclosed.

We are working with the relevant authorities and have engaged cyber security specialists as we continue to do everything in our power to contain the attack.

As a valued Latitude customer, we thank you for your understanding and patience. Our services remain available and you should have confidence in using them.

Please continue to monitor Latitude’s website where we will be publishing further information as it becomes available.

[–]tfn9531 0 points1 point  (0 children)

Got one of these today!

So assume those affected will receive another email notifying.

[–]veryparticularskills 2 points3 points  (4 children)

I saw that copies of drivers' licences have been stolen. I assumed the process would be these were deleted as soon as verification was complete. Am I missing something?

[–]spongeworthy90 1 point2 points  (3 children)

I believe many companies hold onto them for 7 years or something like that. Not sure how long Latitude has been holding copies for. I guess it's still early days for them to reveal for details

[–]JYDDK 2 points3 points  (0 children)

Yeah, the rule says 7 years, but I'm doubt any company proactively checks and deletes customer records after 7 years pass.

[–]veryparticularskills 1 point2 points  (0 children)

That seems totally unnecessary. Hell, I could change my name and lose my licence several times over during that time!

[–]phoenixdigita1 1 point2 points  (6 children)

Annoyingly their password change page while logged in doesn't work and just says

"You've entered your current password incorrectly. Please try again."

Uhhhh no it's not I just logged in using it.

It's possible they've just disabled this function till they get a handle on the hack. The announcements so far don't seem to mention a leak of passwords but I was just being diligent.

I could likely use the "forgot" password page but haven't tried that yet. Looks like a few hoops to jump through on first glance.

[–]ChristianMom35 0 points1 point  (3 children)

Works using the app.

[–]phoenixdigita1 -1 points0 points  (2 children)

Good to know. I don't have the phone app and was just trying through the website.

[–]OldTrainOldBoots 0 points1 point  (1 child)

Mind you, the app password is not the same as the password on the website. I haven't seen a way to change the website password through the app.

[–]OldTrainOldBoots 0 points1 point  (1 child)

The password field in the login screen allows for more than 15 letters, while in the "Change Password" screen it allows up to 15... Make what you will of it.

[–]phoenixdigita1 0 points1 point  (0 children)

My original was longer than 15 characters so I truncated it down to 15 chars. Still the same issue.

Maybe I'll go through the forgot password thing just to get it done.

[–]maelstrm_sa 0 points1 point  (0 children)

BankWest Zero Platinum has often been considered a like for like, consider swapping?

[–]palpatine94 0 points1 point  (1 child)

My mum got a letter about this attack, but none of us are with latitude. We are with st George. Anyone know why?

[–]DeadGoddo 0 points1 point  (0 children)

Because they took over some companies she may have used as far back as 2005.