View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Cloud
August 5, 2019updated 06 Aug 2019 7:58am

Monzo Admits Internal “Bug” Resulted in PINs Being Stored Wrongly, Urges Reset

"There’s no evidence that this data has been used for fraud."

By CBR Staff Writer

UK Challenger bank Monzo is advising its users to change their PIN at an ATM as an internal “bug” resulted in customer’s security codes being stored in the wrong part of the cloud-based bank’s infrastructure.

The bank says that they discovered a bug on Friday August 2 that was erroneously storing customer’s PIN codes in an encrypted log file that engineers at the bank had full access privileges to.

Monzo said the incident affects circa 500,000 of its 2.5 million customers.

It is informing customers that it has deleted files and resolved the bug. Responding to customers on its site Monzo employee Beatrice Borbon stated  “No information has been exposed outside Monzo, and there’s no evidence that this data has been used for fraud. We’ve updated the app, and we’re about to contact some of you to let you know you should change your PIN as a precaution.”

The bank is advising customers to change their PIN at a cash machine as a precaution.

Monzo Change Pin Warning

Monzo Change Pin

The challenger bank has ruled out fraud at this stage noting that they have checked all accounts that are affected by this bug “thoroughly.”

Content from our partners
Scan and deliver
GenAI cybersecurity: "A super-human analyst, with a brain the size of a planet."
Cloud, AI, and cyber security – highlights from DTX Manchester

They’re advising customer that even if they don’t contact them to advise they change their PIN, users of the banking application should still update it to the current version in the Google Play or Apple store.

Monzo have informed the Information Commissioner’s Office, but purely as a precaution as the company views this as an internal error and not a data breach.

See Also: Monzo Now Making Money on Customer Accounts

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how Progressive Media Investments may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.