JD Sports cyber attack: 10 MILLION customers at risk after hack - how to know if you are impacted

JD Sports has said stored data relating to 10 million customers could be at risk after it was hit by a cyber-attack.

Information that "may have been accessed" by hackers includes names, addresses, email accounts, phone numbers, order details and the final four digits of bank cards.

The sportswear company said that the data related to online orders between November 2018 and October 2020.

JD Sports added that it did not save full payment details except for the last four digits of cards used and did not believe that account passwords were accessed by the hackers.

Customers affected will be contacted by company to warn them of the threat of phishing attacks by groups with access to their information.

JD Sports are contacting customers whose data was accessed
Yui Mok

Neil Greenhalgh, chief financial officer of JD Sports said: "We want to apologise to those customers who may have been affected by this incident.

"Protecting the data of our customers is an absolute priority for JD."

The attack is related to online orders placed for the JD, Size?, Millets, Blacks, Scotts and MilletSport brands.

It is understood that the attack was detected by the company in recent days, but only the historical data was accessed.

JD Sports said it was working with "leading cyber-security experts" and was also engaging with the UK's Information Commissioner's Office (ICO) in response to the incident.

The retailer is the latest to be hit in a spate of hacks on UK companies in recent weeks following attacks on Royal Mail and the Guardian.