Dixons Carphone one of the largest consumer electronics and telecommunication retailers in Europe announced that their data breach in 2017 was worse than initially estimated. They admitted that the breach affected around 10 million customers, much higher than the initial estimate of 1.2 million people the company admitted back in June.
The hack was discovered in June this year and since then the company has been investigating about it. From the investigation it has been evident that some of the data may have been taken from its systems.
The Carphone Warehouse and Currys PC World owner reports that the attackers might have accessed several personal information of the affected customers including their names, addresses and email addresses.
The hackers also have accessed 5.9 million payments cards used at Currys PC World and Dixons Travel, but most of the cards were protected by the chip-and-pin system.
The company has promised their customers that bank details, including pin codes, card verification values and authentication data used to make purchases were not taken and that there’s no evidence of any fraud due to the security breach.
In a statement the company has reported that they are planning to communicate and apologize with their customers as a precaution and also to advise them of take protective steps to minimize the risk of fraud.
They have now taken action to close off the unauthorized access and have no evidence it is continuing. Dixons says it has come up with new security measures to safeguard its customer data and is working with experts to prevent any future intrusion.
This is second time in three years Dixons Carphone has become the victim of a major cyber attack. Earlier in 2015, a data breach affected around 3 million customers, for which the company was fined £400,000 earlier this year.