Harrods, a luxury department store, has recently experienced a data breach affecting approximately 430,000 customer records. The store reported that hackers had contacted them regarding the stolen information. According to Harrods, the affected data was obtained from a third-party provider and consists primarily of basic personal details, such as names and contact information. Importantly, the breach did not expose any payment details or passwords.
In a statement, a Harrods spokesperson emphasized the company’s commitment to informing and supporting customers throughout the situation. The organization has notified relevant authorities and is cooperating with investigations. The spokesperson also noted that since most of Harrods’ customers shop in-store, the impact is expected to be limited to a small subset of online shoppers.
Details regarding the communication from the hackers remain unclear. The stolen data also includes marketing preferences and information related to loyalty cards, which the spokesperson indicated may not be easily interpreted by unauthorized parties. Reassurances were provided that no sensitive financial information had been accessed.
This incident is distinct from previous attempts to breach Harrods systems earlier in the year, as confirmed by the spokesperson. The recent breach follows a trend of cyber attacks targeting major UK businesses in 2023. Earlier in May, Harrods restricted internet access following unauthorized access attempts. Other organizations, such as Co-op, reported serious data breaches resulting in significant financial losses, while M&S faced disruptions that could affect their profits by an estimated £300 million. Additionally, Jaguar Land Rover is reportedly still addressing IT issues resulting from a hack in late August.
Source: https://www.bbc.com/news/articles/cpq5w324pd3o?at_medium=RSS&at_campaign=rss