Search

Dixons Carphone says 5.9m bank cards and 1.2m customer records were hacked in cyber breach

Retailer Dixons Carphone has reported a fall in annual profits and a slight drop in UK sales. Picture: Nick Ansell/PA Wire

Retailer Dixons Carphone has reported a fall in annual profits and a slight drop in UK sales. Picture: Nick Ansell/PA Wire

Dixons Carphone has revealed details of a cyber attack which saw 5.9 million customer bank card details and 1.2 million personal data records hacked.

The retailer said that 5.8 million cards targeted were protected by chip and pin – but around 105,000 non-EU cards without chip and pin protection were compromised.

The company said relevant card companies had been notified but that there was no evidence of fraud on the cards as a result of the incident.

It added that its investigation also found hackers had accessed non-financial personal data like names, addresses or email details for more than one million customer records.

It is contacting all those affected, but sought to assure customers it had no evidence that this had resulted in fraud at this stage.

Dixons Carphone said it had called in cyber experts and added extra security to its systems following the breach, while also since calling in the police and relevant authorities.

Chief executive Alex Baldock admitted the group had “fallen short” of its responsibility to protect customer data.

He said: “We are extremely disappointed and sorry for any upset this may cause.

“The protection of our data has to be at the heart of our business, and we’ve fallen short here.

“We’ve taken action to close off this unauthorised access and, though we have currently no evidence of fraud as a result of these incidents, we are taking this extremely seriously.”

Dixons said the hack occurred in one of the processing systems of Currys PC World and Dixons Travel stores.

It said the data accessed did not contain Pin codes, card verification values (CVV) or any authentication data allowing cardholder identification or a purchase to be made.

The group added it did not believe the personal data accessed had left the group’s systems, but was advising those affected on protective steps they should take.

It comes after telecoms firm TalkTalk was hit by a major cyber attack in October 2015, which saw the personal data of nearly 160,000 people accessed by hackers and left the firm facing a record £400,000 fine for security failings.

Yesterday also saw Yahoo’s UK arm fined £250,000 for a data breach in 2014 which affected more than 500 million users.

Search hundreds of local jobs at Jobs24

Management Jobs

Show Job Lists

Newsletter Sign Up

Sign up to the following newsletters:

Sign up to receive our regular email newsletter

Our Privacy Policy

Insight

Like Henry VIII, modern-day politicians continually invent new ways of taxing their citizens.

Voting in South Norfolk Council’s Business Awards, celebrating the economic success of the district, is now open.

Women in Business

cover

Enjoy the
Women in Business
digital edition

Read

Business East

cover

Enjoy the
Business East
digital edition

Read

Celebrating Success

cover

Enjoy the
Celebrating Success
digital edition

Read

B2B Exhibition

cover

Enjoy the
B2B Exhibition
digital edition

Read

Green 100

cover

Enjoy the Green 100
digital edition

Read

Meet the Team

Mark Shields

Business Editor

|

Chris Hill

Agricultural and Farming Editor

|

Business Most Read

Awards

Norfolk Future 50 EDP Business Awards Green 100