Harrods Data Breach: Names and Contact Details Compromised
Harrods has disclosed a data breach affecting its online customers. The luxury retailer confirmed that names and contact details were compromised through a third-party system. The Metropolitan Police are currently investigating the incident.
In July, four individuals were arrested on suspicion of involvement in cyberattacks against Harrods and other retailers. The third-party provider system likely affected in the Harrods attack is linked to Scattered Spider, a cybercriminal group previously reported to be behind attacks on multiple UK retailers, including Harrods, in July 2025.
In a separate incident, Jaguar Land Rover's production lines were shut down in August due to a cyberattack. However, the incident has been contained and was isolated, with no impact on customer data or production schedules.
Harrods has assured customers that the breach did not include account passwords or payment details. The incident is not connected to a previous incident in May where internet access was restricted. The Metropolitan Police are investigating the matter, and Harrods continues to cooperate with authorities.
