Hot on the heels of Tesco warning that hackers had attempted to access the accounts of Clubcard users, another UK high street retailer has warned that it has similarly been attacked.
Boots Advantage Card holders are temporarily prevented from using loyalty points from their accounts to pay for products in stores or on the Boots website, after a reported 140,000 of the pharmacy’s 14.4 million Advantage Card holders were targeted.
Boots, like Tesco, says that its own systems were not compromised, and no payment card information has been accessed. Instead, this appears to have been another credential-stuffing attack where hackers use a database of usernames and passwords stolen from a different site to see what else they might unlock.
The problem here is that far too many people use the same password for different sites. That’s like using the very same key to lock your bicycle, your house, your car, the door to the bank vault where your money is kept. If you happen – perhaps through no fault of your own – to have one key stolen, it can be used by criminals to steal your possessions elsewhere.
This is one of the reasons why it’s so essential to never re-use passwords. If you find it too hard to remember all of your passwords (you will if you’re doing it properly) then you should invest in a password manager to do it for you.
In a statement Boots confirmed that it had suspended payments, in an attempt to prevent hackers from using the points to buy products themselves, and would be notifying affected customers:
Our customers’ safety and security online is very important to us. We can ..
Support the originator by clicking the read the rest link below.
