Fortnum & Mason in credit card data breach

The 'Queen's favourite grocer', Fortum and Mason, is in the news today for breaching of credit card data security standards.

Customers are in uproar having been asked to email the retailer their credit card details in order to receive a refund on Christmas hampers that have yet to be sent. The email said "[Fortnum] will require your card details to arrange a refund (type of card, name of the card, long number, expiry date, security number)."

One customer, who is still waiting for a Christmas hamper ordered back in November, refused to give the details for fear of credit card fraud.

They received a reply from a Fortnum customer service employee saying: "I understand you do not want to give out your details however, we do not keep them on file due to security reasons, the only way I can refund you is if I do have them. We will instantly destroy your details as soon as you are refunded."
UK data security standards forbid companies from requesting consumers' full credit card details via unsecured emails because such requests could allow fraudsters to create cloned credit cards.

Online security is increasingly important as fraudsters use increasingly sophisticated ways of tricking us out of money and sensitive information. In addition to making sure you only ever communicate information or data via a secure connection, here’re some of our tips to avoid being hacked:

1.    Change your passwords regularly - the longer and more obscure, the better
2.    Leave a website if you notice strange behaviour (unknown certificates, pop-ups etc.)
3.    Avoid transmitting sensitive data over public (free or otherwise) Wi-Fi
4.    When seeking Wi-Fi connections: know who you are connecting to, be wary of free Wi-Fi access
5.    If using a smartphone: disable Wi-Fi ‘auto-connect’
6.    If you are concerned about identity fraud, consider purchasing an identity fraud protection product to help you detect, prevent and resolve any incidence of the fraud.

---

Be the first to comment

• Name: *
• Email: *
• Comment: *

By registering your comment here you are agreeing to the CPP Blog code of conduct.

• Remember my personal information
• Notify me of follow-up comments?
• Please enter the word you see in the image below: *

• *All fields are required

In this section

• Cybercrime
• CPP Community
• Card Fraud/Theft
• Data security
• Fraud
• Data loss
• Gadget
• Home Protection
• Mobile Fraud/Theft
• Legal Advice
• Media monitoring
• Identity Fraud/Theft
• Travel

Latest Articles

• CPP takes part in York Cares’ Community Challenge

•  

  This October saw members of the CPP team taking part in two community challenges to help local projects

  ...more

• Social Sites and Why You Need to Change Your Passwords Regularly

• In the space of about 24 hours, users of Last.fm, LinkedIn and eHarmony have been the victims of password theft,

  ...more

• New research finds that bank, credit card or other account fraud by a third party on increase

• Here are some helpful tips on how you can be careful with your personal information online and when mobile …

  1.

  ...more

Popular Articles

• Poll: Has your social networking profile ever been hacked?

• Social and professional networking sites are a great way of connecting with friends and like minded people. However

  ...more

• Can social media lead to identity fraud?

• Identity fraud using information from social media

  There are, apparently, over 500 million Facebook users worldwide

  ...more

• How to avoid airport stress: stay calm, plan ahead and relax in airport lounges

• You’ve squashed a week’s worth of your belongings into a suitcase, rushed to the airport in the middle of the night,

  ...more