While hackers were able to get access to Superdrug’s customer database containing client’s name, address, date of birth and phone numbers, they did not manage to get their hands on Superdrug’s clients’ payment info.
Superdrug, a British pharmacy, has disclosed that hackers had, in all probability, managed to access the personal information of some of its customers, which could include names, addresses, dates of birth and telephone numbers.
In a statement on Twitter, Superdrug clarified that customers’ payment care information had not been compromised.
The pharmacy did not however specify how many customers have been affected by the hacking attack.
“The hacker shared a number of details with us to try and ‘prove’ he had customer information – we were then able to verify they were Superdrug customers from their email and log-in,” said Superdrug’s spokeswoman while explaining that a hacker or hackers had attempted to extort a ransom from the company.
Superdrug has advised its customers to change their online passwords. It has also contacted the police and Action Fraud – the UK’s national cyber crime reporting center.