Sports Direct 'hack puts staff details in the wild'

Firm allegedly fails to tell its staff their data was at risk

Sports Direct employees' personal details may have been put at risk in a data breach, according to The Register,although the retailer had allegedly not informed its 30,000-strong workforce about the incident.

A hacker or hackers broke into the company's systems last September using a security hole in Sports Direct's staff portal, according to the publication, which broke the story.It reported that the attackers took advantage of a vulnerability in Sport Direct's DNN platform, which had not been updated to include the latest security patch.

Bosses only found out about the breach in December, The Register said.

The details said to have been stolen include the names, emails and postal addresses of employees working at the sporting goods retailer, but it's unclear what the hackers have done with the data.

According to the ICO, Sports Direct has advised it of the hack and it will be "making enquiries" into how the attack occurred.

A spokesman for Sports Direct said in a statement: "We cannot comment on operational matters in relation to cybersecurity for obvious reasons. However, it is our policy to continually upgrade and improve our systems, and where appropriate we keep the relevant authorities informed."

Dr Jamie Graves, CEO at Zonefox said the way Sports Direct dealt with the breach is not an advisable approach.

"The waySportsDirecthas handled their data breach last year is a perfect example of how not to deal with a cyber attack,"Graves said. "With the looming EU GDPR regulations stating companies must declare a data breach within 72 hours or they will face severe fines, a lot of learning must be done by businesses on how they deal with a breach.

"They have said they filed a report with the ICO, but how quickly that happened has not been disclosed," he added. "This is a classic case of an avoidable breach; an unpatched system with unencrypted details."

Featured Resources

Navigating the new normal: A fast guide to remote working

A smooth transition will support operations for years to come

Download now

Leading the data race

The trends driving the future of data science

Download now

How to create 1:1 customer experiences at scale

Meet the technology capable of delivering the personalisation your customers crave

Download now

How to achieve daily SAP releases

Accelerate the pace of SAP change to support your digital strategy

Download now

Recommended

The Ritz suffers data breach after hackers pose as staff
data breaches

The Ritz suffers data breach after hackers pose as staff

17 Aug 2020
Russia hacked Liam Fox's personal email to steal trade documents
phishing

Russia hacked Liam Fox's personal email to steal trade documents

4 Aug 2020
British teenager charged over Twitter hack
hacking

British teenager charged over Twitter hack

3 Aug 2020
Mid-year report says vulnerabilities up 22% in 2020
hacking

Mid-year report says vulnerabilities up 22% in 2020

30 Jul 2020

Most Popular

16 ways to speed up your laptop
Laptops

16 ways to speed up your laptop

16 Sep 2020
16 ways to speed up your laptop
Laptops

16 ways to speed up your laptop

16 Sep 2020
The Xbox Series X shows how far the cloud still has to go
Cloud

The Xbox Series X shows how far the cloud still has to go

25 Sep 2020