Thousands of people in the UK have had their emails and names leaked after one service provider for online retailer Play.com suffered a massive security breach.
In an email sent to its customers, Play.com admitted that even though their email addresses and names had been comprised, sensitive financial information like credit card details were not leaked.
“We take privacy and security very seriously and ensure all sensitive customer data is protected. Please be assured this issue has occurred outside of Play.com and no other personal customer information has been involved,” the company said in the letter.
The retailer revealed that the leak happened when customer data was stolen from a third party marketing firm which had been hired by Play.com.
The data breach could have serious implications for both Play.com and its customers. A recent report showed that data breaches result in losses on average of £1.9 million. Play.com customers whose details have been compromised could be targeted by 'phishing' attacks, in which hackers could send fake Play.com emails to users and lure them into divulging their financial details.
The online retail platform, which has more than 7 million users, is the second largest online retailer of DVDs, gadgets video games and the like, after Amazon.co.uk.