Third-party vendor compromise exposes customer contact information.

Harrods disclosed Sunday that 430,000 online customers had their basic personal information compromised through a third-party software provider, marking the retailer’s second breach in 2025. The exposed data includes names, contact details, and internal marketing labels, but no passwords, payment information, or order history were accessed. Harrods stated it received communications from the threat actors but refused to engage with them, while security experts warn that 97% of top UK companies have at least one breached third party in their ecosystem.

Read more:

https://cybernews.com/news/uk-harrods-third-party-breach-430000-customers-impacted-second-retail-attack/