""We are aware that some e-commerce customers have been directly contacted by someone purporting to have taken some personal data from one of our third-party providers' systems," a Harrods spokesperson told Computer Weekly. "We have notified all relevant authorities, including the National Cyber Security Centre and the Metropolitan Police Cyber Crime unit, and they are actively investigating. "Negotiating with cyber criminals does not result in any guarantees as to what they may do with the information they have accessed," the spokesperson said."
"It is possible that the hackers are attempting to extort individuals whom they perceive to be of high net worth. In some instances, particularly ransomware attacks, it is also not unknown for cyber criminals to contact customers to urge their victims to comply with extortion demands. However, at the time of writing, there is no indication that Harrods has been hit by ransomware."
High-end retailer Harrods reported that some e-commerce customers have been directly contacted by individuals claiming to have taken personal data from a third-party provider's systems. Harrods notified the National Cyber Security Centre and the Metropolitan Police Cyber Crime unit, which are investigating. Harrods advised customers against negotiating with cyber criminals and said accessed personal data is limited to basic identifiers such as names and contact details. The intrusion was discovered last week and was orchestrated via an undisclosed third-party IT supplier. The attackers may be attempting to extort perceived high-net-worth individuals, though there is no indication of ransomware involvement.
Read at ComputerWeekly.com
Unable to calculate read time
Collection
[
|
...
]