Sneaker and sportswear large Adidas disclosed a knowledge breach this week after hackers accessed a “third-party customer support supplier” and stole the contact data of shoppers who contacted the assistance desk previously.
“We instantly took steps to include the incident and launched a complete investigation, collaborating with main data safety consultants. The affected information doesn’t include passwords, bank card or some other payment-related data,” the corporate mentioned.
The Herzogenaurach, Germany-based firm mentioned it was within the strategy of notifying the possibly affected clients and the related authorities, however has not shared particulars on the variety of probably affected people or on how the hack occurred.
Lingerie retailer Victoria’s Secret was additionally impacted by a cyber incident this week that pressured it to take its web site down on Wednesday. The positioning stays offline on the time of publication.
The 2 incidents got here to gentle solely weeks after UK retailers Co-op, Harrods, and Marks & Spencer (M&S) have been focused by the DragonForce ransomware group. The assault on M&S resulted in information theft and will price the retailer roughly $400 million.
“Retailers have turn out to be high-value targets for cybercriminals, and up to date breaches at Dior, M&S, Harrods, and Co-Op within the final month alone make it clear that that is greater than only a passing development,” mentioned Ryan Sherstobitoff, SVP of Menace Analysis & Intelligence at SecurityScorecard. “These assaults will not be remoted occasions; they symbolize a rising sample exposing a deeper, systematic vulnerability throughout the retail trade. On this Adidas breach, attackers accessed information by a third-party supplier, highlighting the specter of interconnected provide chains, which proceed to be a significant entryway for menace actors.”
“Whereas Adidas has claimed that the stolen information from this breach excludes any payment-related data, the information nonetheless stays extremely priceless for menace actors to take advantage of for identification theft, phishing themes, and different fraudulent actions,” Sherstobitoff added.
Associated: Google Warns UK Retailer Hackers Now Concentrating on USAdvertisement. Scroll to proceed studying.
