Thousands of Customer Passwords Leaked in Tesco Cyber Attack



Tesco have deactivated more than 2,000 online customer accounts following a cyber breach where credentials were stolen and shared by cyber criminals.

The breach is the latest in a series of information related failings the supermarket giant has faced in recent times. Earlier in February, Tesco accidentally revealed hundreds of customer email addresses after distributing a mass email that contained all of the customer email addresses in the ‘to’ line, and could therefore be seen by anyone who received the email. Prior to this, Tesco had to issue hundreds of vouchers to customers affected by a breach relating to Clubcard points.

The particular incident in question occurred due to hackers obtaining stolen data from other sites, who attempted the same username and password combinations to log in to Tesco accounts. There were 2,239 matches in total.

The firm announced in the press that they had contacted each customer that may have been affected by the breach, and confirmed they would be taking the incident extremely seriously with a thorough investigation.