Dixons Carphone has revealed that it has been affected by a huge breach which puts 5.9 million payment cards and 1.2 million personal data records at risk.
The hacking started in July 2017 but Dixons Carphone stated that there is no evidence that any of the cards has been used fraudulently following the breach. On the other other, 5.8 million of the hacked cards had chip-and-PIN protection.
The firm said that “approximately 105,000 non-EU issued payment cards which do not have chip and pin protection have been compromised”.
The hackers also tried to gain information from Currys PC World and Dixons Travel stores.
Addresses, email addresses, and names were the majority of the personal information stolen. Dixons Carphone believed that this has resulted in no fraud but is contacting all those affected.
Dixons Carphone Chief Executive, Alex Baldock, said: “We are extremely disappointed and sorry for any upset this may cause. The protection of our data has to be at the heart of our business, and we’ve fallen short here. We’ve taken action to close off this unauthorised access and though we have currently no evidence of fraud as a result of these incidents, we are taking this extremely seriously.
“We are determined to put this right and are taking steps to do so; we promptly launched an investigation, engaged leading cyber security experts, added extra security measures to our systems and will be communicating directly with those affected. Cyber crime is a continual battle for business today and we are determined to tackle this fast-changing challenge.”
This is the second hack the company has had to admit to in the past three years after the personal details of 2.4 million consumers were stolen from Carphone Warehouse in 2015.