Prominent consumer advocate Martin Lewis has sounded the alarm after his followers reported a massive privacy breach within the Lloyds Banking Group apps. The glitch allowed users of Bank of Scotland, Halifax, and Lloyds to view the private transaction histories of completely different customers. Lewis noted that the sheer volume of complaints indicates a significant systemic failure.
According to reports on the MoneySavingExpert platforms, some users were able to see the financial details of up to 30 other individuals. The exposed data included highly sensitive info such as names, account numbers, and even National Insurance numbers. This level of exposure has led to widespread fear among the public regarding identity theft and financial fraud.
Lloyds Banking Group has responded by apologizing for what they described as a “short-term issue.” They claimed the problem was identified and fixed quickly on the morning it occurred. However, for the thousands of people who saw their data shared—or saw the data of others—the apology offers little comfort regarding their long-term privacy.
The ICO’s involvement signals that this is being treated as a high-level data protection incident. Under current regulations, banks must be transparent about how many people were affected and what steps are being taken to prevent a recurrence. This is especially vital given the recurring nature of IT failures in the UK banking sector over the last twelve months.
For now, experts recommend that affected customers keep a record of what they saw and any communications with their bank. The future of banking remains digital, but this incident serves as a reminder that technology is only as good as the safeguards behind it. The ICO is expected to release a full report on their findings in the coming weeks.