Eurostar has become the latest high-profile brand to have suffered a potentially damaging data breach after admitting to an “unauthorised attempt” to access its systems.
The company has yet to confirm how many people have been affected by the attack or whether any data has been taken, although it has forced all of its customers to reset their passwords as a precaution.
Customers were sent an email on Tuesday stating that the company had identified an attempt to access eurostar.com accounts using their email addresses and passwords between October 15 and 19.
Eurostar claimed that credit card details and payment details have not been compromised because the company does not store that information online.
The email states: “We have taken this action as a precaution because we identified what we believe to be an unauthorised automated attempt to access eurostar.com accounts using your email address and password.
“We’ve since carried out an investigation which shows that your account was logged into between October 15 and 19. If you didn’t log in during this period, there’s a possibility your account was accessed by this unauthorised attempt.”
Customers were told to check their accounts for “anything unusual” and update login details on any other site where they use the same password.
A Eurostar spokesman said: “This email was sent after we identified what we believe to be an unauthorised automated attempt to access customer accounts, so as a precaution, we asked all account holders to reset their password. We deliberately never store any payment details or bank card information, so there is no possibility of those being compromised.”
An Information Commissioner’s Office spokesman said: “We’ve received data breach report from Eurostar and are making enquiries.”
Earlier this month, both British Airways and Cathay Pacific revealed that their websites had been hacked.
Cathay Pacific data breach hits 9.4 million customers
British Airways grovels as 380,000 hit by data breach
Data breach complaints soar by 160% in three months
British Airways grounded as data privacy storm erupts
Superdrug has bad hair day as online data goes AWOL
Butlin’s customer holiday plans exposed in online raid
Dixons Carphone fesses up that 10m were hit by breach