Industry experts have responded to a cyberattack on health and beauty retailer Superdrug.
The company released a statement stating there had been ‘an event’ which may have resulted in the possible disclosure of some customers’ personal information.
The statement said: “This does not include payment card information but could include customers’ names, addresses and, in some instances, date of birth, phone number and points balances.
“As a security precaution we have advised all customers to change their online passwords. We are aware that some customers are experiencing difficulties in doing so – we appreciate this is very frustrating and we are doing everything we can on this.
“We are very sorry for the inconvenience and concern this has caused.
“We take our responsibility to protect your personal information very seriously and that is why we have let our customers know as soon as we could.”
The company said it had contacted police and Action Fraud (the UK’s national fraud and cybercrime arm) and will be providing all the information needed for the investigation.