Dixons Carphone has admitted to a major data breach involving 5.9 million payment cards and 1.2 million personal records, according to BBC News.
The company said a hacking attempt began in July 2017. The cybercriminals targeted 5.8 million credit and debit cards and succeeded in compromising 105,000 cards which lacked chip-and-pin technology.
Dixons Carphone shares fell 3% on confirmation of the hack. The company said there was no evidence that any of the cards had been used fraudulently. Hackers had sought to access processing systems at stores including Currys PC World and Dixons Travel.
It is unclear why the data breach has only been confirmed one year on, or whether there is any connection with a previous data breach at the firm in 2015.
Chief Executive Alex Baldock said the company was “extremely disappointed” about the breach and had brought in additional security experts to review its practices.
Baldock said: “The protection of our data has to be at the heart of our business, and we’ve fallen short here. We’ve taken action to close off this unauthorised access and though we have currently no evidence of fraud as a result of these incidents, we are taking this extremely seriously.”
Subsidiary company Carphone Warehouse had already warned of a profit drop in 2018 and announced it would close more than 92 of the UK’s 700 stores.