Carpet retailer suffers data breach in EU division

Carpet retailer Carpetright has confirmed that its recent data breach has not impacted its UK business.

Carpetright recently suffered a data breach within its Netherlands division as well as in Belgium where hashed passwords may have been stolen.

As a precaution, the retailer has reset all passwords following the breach and has engaged with security company NFIR to launch a forensic investigation into the attack and to determine whether any data has been downloaded.

Carpetright said the breach took place on 19 February 2024 on the back-end of its website, which was infected with unknown malware. Information including customer names, addresses and contact details are at risk following the breach, which could include 30,000 Carpetright account holders.

The retailer added that payment details were not in database that was impacted and has reported the incident to both the Dutch Data Protection Authority and the Belgian Data Protection Authority.

As for the UK, a statement from Carpetright said: “The incident is isolated to Carpetright Europe and has no impact to Carpetright UK, or any other Nestware brands.”

Save this article for later

You can revisit this article if you save it as favourite news!

Leave a Comment


Keiran Hewkin, founder and CEO of sofa-in-a-box brand Swyft, talks about their recent ownership transition and what it means for the business moving forward....