The Information Commissioner’s Office has released a bizarre statement following the breach of 2.4 million customer records at Carphone Warehouse, simply saying it is “making enquiries” about the incident.
The mobile phone retailer fessed up to the attack on Saturday morning, and warned customers that encrypted credit card details of 90,000 people may have been stolen.
It said it had discovered a “sophisticated attack” on its systems on August 5 but failed to tell customers about the breach for three days. The company claimed it had been working “intensively” to establish the severity of the attack.
The hack also hit users of TalkMobile, TalkTalk Mobile and the iD mobile phone network. Other sites affected by the attack include OneStopPhoneShop.co.uk, e2save.com and Mobiles.co.uk.
Parent company Dixons Carphone insisted that customer data held by Currys, PCWorld and Dixons Travel was not affected.
An ICO spokesman said: “We have been made aware of an incident at Carphone Warehouse and are making enquiries.”
ICO ‘enquires’ about Carphone #hacking, but refuses to confirm investigation http://t.co/LSOcV8PkCW #data #breach http://t.co/y7qNUzUNJD
ICO ‘enquires’ about Carphone hack http://t.co/2vZyIWlzQ2 #marketing