Luxury retailer Harrods has confirmed a new data breach that exposed the personal details of around 430,000 e-commerce customers after hackers compromised one of its third-party suppliers.
The company clarified that this incident is separate from the cyberattack it faced in May, which was attributed to the hacker group Scattered Spider.
In a statement to publications, Harrods said it informed affected customers on Friday that their personal details, including names and contact information, were accessed following a breach at a third-party provider.
The retailer did not disclose the name of the compromised vendor but said it has taken immediate steps to contain the situation and alert authorities.
The company reassured customers that the leaked data does not include passwords, payment details, or purchase histories.
However, some customer records contained internal tags and marketing labels used by Harrods for service management. These labels may reference customer tier levels or affiliations with Harrods’ co-branded credit cards, though the company said such information would be difficult for unauthorised parties to interpret accurately.
Cybersecurity experts have linked the breach to a wider supply chain attack that affected multiple companies globally over the
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.
This article has been indexed from CySecurity News – Latest Information Security and Hacking Incidents
Read the original article: