JD Sports hit by cyber attack
JD Sports Fashion said on Monday that it has been hit by a cyber attack in which the data of around 10m customers may have been accessed.
FTSE 100
8,136.99
12:59 24/12/24
FTSE 350
4,491.87
12:54 24/12/24
FTSE All-Share
4,449.61
13:14 24/12/24
General Retailers
4,640.03
12:54 24/12/24
JD Sports Fashion
94.92p
12:40 24/12/24
The incident relates to some online orders between November 2018 and October 2020 and the affected brands are JD, Size?, Millets, Blacks, Scotts and MilletSport.
JD said the affected data is "limited", noting that it does not hold full payment card data and has no reason to believe that account passwords were accessed.
The information that may have been accessed consists of names, billing addresses, delivery addresses, email addresses, phone numbers, order details and the final four digits of payment cards.
"We have taken the necessary immediate steps to investigate and respond to the incident, including working with leading cyber security experts," the retailer said, adding that it is engaging with the relevant authorities, including the UK's Information Commissioner's Office (ICO).
Chief financial officer Neil Greenhalgh said: "We want to apologise to those customers who may have been affected by this incident. We are advising them to be vigilant about potential scam e-mails, calls and texts and providing details on how to report these.
"We are continuing with a full review of our cyber security in partnership with external specialists following this incident. Protecting the data of our customers is an absolute priority for JD."