Things haven't been looking too great for Dixons Carphone. Not only has the company had to shut down 92 Carphone Warhouse stores, a move blamed on changing consumer phone-buying habits, the company has now confirmed it has been hacked. What's more some 5.8 million credit card details may have been exposed in the process, alongside 1.2 million instances of non-financial personal data.
According to a statement made by the company, the security breach was discovered during a recent review of the company's systems and data. The resulting investigation confirmed which data had been accessed, including attempts to access the aforementioned credit card and personal details. Dixons Carphone has informed the relevant authorities, including the Information Commissioner's Office and Financial Conduct Authority, but stresses that 5.8 million card details are still protected by Chip-and-PIN systems.
The compromised data didn't include PIN codes, CVV numbers, or any other personal or authenticating information that could lead to fraudulent use. That said around 105,000 details were from non-EU cards that may not have the same protections, so Dixons Carphone has informed the card companies in question so they can take action.
It's also been keen to stress that it has found no evidence of fraud taking place due to the breach, and that includes the 1.2 million personal records containing names, addresses, and emails. But the company claims there's still no evidence of fraud, or even that this data left its system.
Dixons Carphone Chief Executive, Alex Baldock, said:
“We are extremely disappointed and sorry for any upset this may cause. The protection of our data has to be at the heart of our business, and we’ve fallen short here. We’ve taken action to close off this unauthorised access and though we have currently no evidence of fraud as a result of these incidents, we are taking this extremely seriously. We are determined to put this right and are taking steps to do so; we promptly launched an investigation, engaged leading cyber security experts, added extra security measures to our systems and will be communicating directly with those affected. Cyber crime is a continual battle for business today and we are determined to tackle this fast-changing challenge.”