Dixons Carphone finds data breach and over a million records accessed

Lloyd Doyle
June 13, 2018

What's more some 5.8 million credit card details may have been exposed in the process, alongside 1.2 million instances of non-financial personal data.

It said an investigation, which started last week, indicated there was an attempt, going back to July past year, to compromise data on 5.9 million credit cards in one of the processing systems of Currys PC World and Dixons Travel stores.

"As a precaution we immediately notified the relevant card companies via our payment provider about all these cards so that they could take the appropriate measures to protect customers", the firm said.

"We have no evidence that this information has left our systems or has resulted in any fraud at this stage", it confirmed.

However, the firm said that 5.8million of the cards have chip and pin protection and that pin codes and CVV numbers were not accessed.

Dixons Carphone chief exec Alex Baldock apologised to customers for the inconvenience, adding (as is standard in post-breach statements) that the company takes security seriously. The protection of our data has to be at the heart of our business, and weve fallen short here.

"We have taken action to close off this access and have no evidence it is continuing", the company said.


Dixons Carphone said it had called in cyber experts and added extra security to its systems following the breach, while also since calling in the police and relevant authorities.

In a press release, the retailer revealed 5.9 million card records were compromised. "We have no evidence to date of any fraudulent use of the data as result of these incidents", the company said.

The Information Commissioner's Office (ICO), the Financial Conduct Authority and law enforcement have all been informed about the attack.

He said: "Today's breach of Dixons data will have far reaching consequences for some time".

It comes after telecoms firm TalkTalk was hit by a major cyber attack in 2015.

While the breach took place last July, Dixons Carphone only realised that it had occurred in the last week and the notification delay of nearly a year was not a case of the firm covering up the fact, allegedly.

According to a statement made by the company, the security breach was discovered during a recent review of the company's systems and data.

Other reports by Iphone Fresh

Discuss This Article

FOLLOW OUR NEWSPAPER