A system that included data on orders placed by JD Sports customers between November 2018 and October 2020 was accessed by hackers. JD Sports is addressing consumers who may have been affected and cautioning them to be wary of scam emails, calls, and messages in the wake of a data breach that may have exposed the personal information of 10 million customers, including residents in Falkirk.
The company claimed that credit card information was secure and that there was no reason to believe that passwords of customers had been compromised.
Several UK-based businesses have recently been the target of cyberattacks. Earlier this month, Royal Mail was the target of a ransomware assault, which forced it to stop sending mail and packages abroad.
The Guardian newspaper was allegedly the victim of a ransomware attack in December.
Because of the vast volumes of customer data that shops have, Lauren Wills-Dixon, a solicitor and data privacy expert at the law firm Gordons, said that businesses needed to do more to prepare for cyberattacks.
However, she asserted that the industry's greater reliance on technology "to minimize overheads and optimize operations has escalated the danger even higher. In the modern era, a cyber-attack will occur "when," not "if," she said.
The ICO was aware of the attack, according to a spokeswoman, and was reviewing the data provided by JD Sports.
According to the group, the affected data was "minimal." It noted that it didn't have all of the payment card information and didn't think the hackers had access to account passwords.
Neil Greenhalgh, chief financial officer of JD Sports, said, "We want to apologize to those consumers who may have been impacted by this occurrence. JD states that protecting consumer data is a top focus. The hack targeted online purchases made under the JD, Size?, Millets, Blacks, Scotts, and MilletSport brands. It is believed that the corporation discovered the attack recently, but that only historical data was accessed. In response to the breach, the corporation stated that it was collaborating with "renowned cyber-security specialists" and was speaking with the UK's Information Commissioner's Office (ICO).
Tags
business