(Reuters) — British sports and fashion retailer JD Sports Fashion said on Monday it has fallen victim to a cyber attack in which customer data related to online orders has been compromised.
The company said the data affected was “limited” because it did not hold full payment card data and did not believe account passwords were accessed.
The attack affected online orders for the JD, Size?, Millets, Blacks, Scotts and MilletSport brands between November 2018 and October 2020.
JD Sports said information that may have been accessed included names, billing addresses, shipping addresses, email addresses, phone numbers, order details and the last four digits of payment cards for around 1
0 million customers.The company apologized to customers and is contacting those affected to advise them to be vigilant about the risk of fraud and phishing attacks.
It is also investigating the incident, working with cyber security experts and cooperating with the UK’s Information Commissioner’s Office, the country’s data protection watchdog.
Cyber attacks on UK businesses are becoming more common.
Earlier this month, Royal Mail’s export services were severely disrupted by what it described as “a cyber incident.”
Source link
