JD Wetherspoon Customers Hit By Hacking Attack

A database containing the details of 656,723 JD Wetherspoon customers has been hacked, the pub company has confirmed.

In a statement, the chain said the data breach had occurred in June – and related to an old website which has since been replaced in its entirety.

JD Wetherspoon added that the database mostly contained each customer's name, date of birth, email address and phone number – but "a tiny number of customers" have had some of their credit or debit card information stolen.

It is only thought that about 100 customers had financial information compromised, and in each case, the hackers would have only been able to obtain the last four digits of card numbers.

The statement explained: "These credit or debit card details cannot be used on their own for fraudulent purposes, because the first 12 digits and the security number on the reverse of the card were not stored on the database."

Customers are being recommended to remain vigilant for any unexpected emails which specifically ask for personal or financial information – as well as messages which request them to click on links or download files.

Security specialists had made JD Wetherspoon aware of the hacking on Wednesday.

"There has been no information from customers, or from our cyber security specialists, that leads us to believe that fraudulent activity, using the stolen information, has taken place, although we cannot be certain," its statement continued.

The Information Commissioners Office has been notified about the "criminal attack", and a forensic investigation into the breach is ongoing.