Specialist child and baby retailer superstore Kiddicare, the Peterborough-based company suffers a serious data breach which helped hackers access customer’s details. In a document it said that it was alerted to the breach by a phishing SMS message “purported to be from a subsidiary website of Kiddicare.com and invited customers to take an online survey.”
Kiddicare saw some of its customer details accessed by hackers, who then used the stolen data to carry out a phishing attack. The information comprised names, delivery addresses, telephone numbers and email addresses, but no credit or debit card information. The company said it had emailed 794,000 people who may have been affected by the incident.
On the company’s website, Kiddicare said the risk to customers was “low” but warned them to be vigilant. “If you are unsure whether a communication is genuine, you should always contact the company the message is purporting to be from to confirm authenticity”, added the company.
Kiddicare identified the cause of the attack and had put increased security in place. It added that while passwords were protected by strong encryption and there was no indication that passwords had been accessed, it had reset all passwords.
