The Financial Conduct Authority (FCA) has fined Tesco Personal Finance plc (Tesco Bank) £16.4m for failing to exercise due skill, care and diligence in protecting its personal current account holders against a cyber attack that took place in November 2016.
The attackers exploited deficiencies in Tesco Bank’s design of its debit card, its financial crime controls and in its Financial Crime Operations to carry out the attack. Those deficiencies left Tesco Bank’s personal current account holders vulnerable to a largely avoidable incident that occurred over 48 hours and which netted the cyber attackers £2.26m.
Commenting on the outcome, FCA executive director of enforcement and market oversight Mark Steward said: “The fine the FCA imposed on Tesco Bank today reflects the fact that the FCA has no tolerance for banks that fail to protect customers from foreseeable risks. In this case, the attack was the subject of a very specific warning that Tesco Bank did not properly address until after the attack started. This was too little, too late. Customers should not have been exposed to the risk at all.
“Banks must ensure that their financial crime systems and the individuals who design and operate them work to substantially reduce the risk of such attacks occurring in the first place. The standard is one of resilience, reducing the risk of a successful cyber attack occurring in the first place, not only reacting to an attack. Subsequently, Tesco Bank has strengthened its controls with the object of preventing this type of incident from being repeated.”
The FCA stated that Principle 2 requires a firm to conduct its business with due skill, care and diligence. The bank failed to meet these criteria as it did not apply it to the design and distribution of its credit card, the configuration of specific authentication and fraud detection rules and failed to take appropriate action to prevent the foreseeable risk of fraud.
Furthermore, the authority noted that Tesco Bank did not respond to the November 2016 cyber attack with sufficient rigour, skill or urgency.
However, as the bank provided a high level of cooperation with the FCA, and it implemented a comprehensive redress programme which fully compensated customers, the FCA granted the bank 30% credit for mitigation. In addition, Tesco Bank agreed to an early settlement of this matter which qualified for a 30% (Stage 1) discount under the FCA’s executive settlement procedure. But for the mitigation credit and the Stage 1 discount, the FCA would have imposed a penalty of just over £33.5m.
Latest News
NEW BUILD IN FOCUS - NEW EPISODE OF THE MORTGAGE INSIDER PODCAST, OUT NOW
Figures from the National House-Building Council saw Q1 2025 register a 36% increase in new homes built across the UK compared with the same period last year, representing a striking development for the first-time buyer market. But with the higher cost of building, ongoing planning challenges and new and changing regulations, how sustainable is this growth? And what does it mean for brokers?
The role of the bridging market and technology usage in the industry
Content editor, Dan McGrath, sat down with chief operating officer at Black & White Bridging, Damien Druce, and head of development finance at Empire Global Finance, Pete Williams, to explore the role of the bridging sector, the role of AI across the industry and how the property market has fared in the Labour Government’s first year in office.
Does the North-South divide still exist in the UK housing market?
What do the most expensive parts of the country reveal about shifting demand? And why is the Manchester housing market now outperforming many southern counterparts?
In this episode of the Barclays Mortgage Insider Podcast, host Phil Spencer is joined by Lucian Cook, Head of Research at Savills, and Ross Jones, founder of Home Financial and Evolve Commercial Finance, to explore how regional trends are redefining the UK housing, mortgage and buy-to-let markets.
In this episode of the Barclays Mortgage Insider Podcast, host Phil Spencer is joined by Lucian Cook, Head of Research at Savills, and Ross Jones, founder of Home Financial and Evolve Commercial Finance, to explore how regional trends are redefining the UK housing, mortgage and buy-to-let markets.
The new episode of The Mortgage Insider podcast, out now
Regional housing markets now matter more than ever. While London and the Southeast still tend to dominate the headlines from a house price and affordability perspective, much of the growth in rental yields and buyer demand is coming from other parts of the UK.
In this episode of the Barclays Mortgage Insider Podcast, host Phil Spencer is joined by Lucian Cook, Head of Research at Savills, and Ross Jones, founder of Home Financial and Evolve Commercial Finance.
In this episode of the Barclays Mortgage Insider Podcast, host Phil Spencer is joined by Lucian Cook, Head of Research at Savills, and Ross Jones, founder of Home Financial and Evolve Commercial Finance.
© 2019 Perspective Publishing Privacy & Cookies
Recent Stories