JD Wetherspoon admits data breach

By Liam Garrahan contact

- Last updated on GMT

JD Wetherspoon admits data breach

Related tags: E-mail

JD Wetherspoon has become the latest hospitality business to admit that some customer and staff data, including credit and debit cards, names, mobile phone numbers, email addresses, and dates of birth, has been accessed illegally by a third party.

The data breach, which took place between 15 and 17 June this year and saw the data of 656,723 customers accessed, is the latest in a recent line of attacks on the hospitality industry​.

The operator has said that ‘a tiny minority’ of 100 customers had their credit/debit cards accessed; this was limited to the final four digits of the card. As a result, no fraudulent activity can take place. Those who were affected by this purchased Wetherspoon vouchers online before August 2014.

Some personal staff details, registered before 10 November 2011, were stolen, but no salary, bank, tax or national insurance information was breached.

No passwords were obtained by the hackers.

In a statement, Wetherspoon chief executive, John Hutson, said: “We apologise wholeheartedly to customers and staff who have been affected.

“Unfortunately, hacking is becoming more and more sophisticated and widespread. We are determined to respond to this by increasing our efforts and investment in security and will be doing everything possible to prevent a recurrence.”

The information was obtained from the pub operator’s old website, which has been replaced in its entirety. The current website is managed by a new digital partner with no links to the website that was the subject of the security breach.

In an email to customers, the operator offered advice to those affected.

“We recommend that you remain vigilant for any emails that you are not expecting, that specifically ask you for personal or financial information, or request you to click on links or download information.

“We also recommend that if you are contacted by anyone asking you for personal data or passwords, such as for your bank account details, you should take all steps to check the true identity of the organisation.”

The Information Commissioner’s Office, which regulates data protection, has been notified of the breach, and the group is investigating the incident.

Related news

Show more

Related products

show more

Reduce costs with Access Procure Wizard P2P

Reduce costs with Access Procure Wizard P2P

Access Hospitality | 02-Nov-2018 | Technical / White Paper

Are there ways you could increase profitability and streamline processes? Access Procure Wizard’s purchase to pay system is the best in class and helps...

Increase revenue with a container bar or café

Increase revenue with a container bar or café

ISO Spaces | 30-Oct-2018 | Product Catalog

Leading providers of container conversions, ISO Spaces have curated a catalogue of container bars, cafés & catering units. Choose from 9 designs &...

Life is Better Filtered: The Collaborative Kitchen

Life is Better Filtered: The Collaborative Kitchen

Brita | 04-Oct-2018 | Technical / White Paper

Many would argue that the back of house operation is the backbone of all hospitality establishments and for a business to succeed, it needs to be operating...

Related suppliers

Spotlight

Follow us

Hospitality Guides

View more

Featured Suppliers

All suppliers