Data Breach at Britain JD Sports leaks 10 million customers

JD Sports, Britain’s online retailer of branded sportswear, has reportedly become a victim of a cyber attack that leaked information of over 10 million customers. Details are in that the info belongs to all those customers who booked their orders on the platform from the past few years(say between Nov’18 to Oct’2020) and might include sensitive details of half of the affected consumers.

Accessed information includes data related to phone numbers, email accounts, addresses, names, the location where the order was delivered, and the final 4 digits of bank cards.

The potential leak of financial details could lead to serious concerns, as often threat actors use the data to launch identity theft and other kind of social engineering attacks on the impacted customers.

JD Sports has assured that hackers accessed no passwords related to their accounts and issued an apology for failing to protect the customer info.

Neil Greenhalgh, the CFO of JD Sports, has acknowledged the incident and confirmed that all such incidents in the future will be repelled as an information security practice overhaul is underway and will get completed by next month’s end.

Meanwhile, the sports retail giant has informed the UK’s Information Commissioner Office and NCSC on an official note, and leading Cybersecurity experts were pressed into service to investigate the attack to the core.

NOTE- JD Sports stands on the names of two gentlemen, John Wardle and David Makin. And so a trading name by taking the first alphabet from both the above stated names was taken for trading purpose in 1981. The business was first established in the same year in Greater Manchester. Now, the business that is into sports fashion has evolved into a multinational retail chain as it brings all big brands like Nike, Puma, and Fila under one retail umbrella and offers great discounts across the United States and UK.

 

Ad
Naveen Goud
Naveen Goud is a writer at Cybersecurity Insiders covering topics such as Mergers & Acquisitions, Startups, Cyber Attacks, Cloud Security and Mobile Security

No posts to display