DICK’S Sporting Items, the biggest chain of sporting items retail shops in america, disclosed that confidential data was uncovered in a cyberattack detected final Wednesday.
Based in 1948, DICK’S operates 857 shops throughout america and has reported $12.98 billion in income in 2023. As of February 2024, the Fortune 500 firm employs over 55,500 folks (18,900 full-time and 36,600 part-time).
Based on a submitting with the U.S. Securities and Trade Fee (SEC), the corporate has employed outdoors cybersecurity consultants to assist comprise the safety breach and assess the cyberattack’s impression.
“On August 21, 2024, the Company discovered unauthorized third-party access to its information systems, including portions of its systems containing certain confidential information,” the retailer big mentioned.
“Immediately upon detecting the incident, the Company activated its cybersecurity response plan and engaged with its external cybersecurity experts to investigate, isolate, and contain the threat.”
Based on a supply who requested anonymity to talk freely, the corporate has supplied few particulars concerning the breach and is telling staff to not talk about it publicly or put something in writing.
The identical supply instructed BleepingComputer that e mail methods had been shut down, prone to isolate the assault, and all staff had been locked out of their accounts. IT employees is now manually validating staff’ identities on digicam earlier than they will regain entry to inside methods.
In an inside memo shared with BleepingComputer, Dick’s instructed staff that almost all of them not have entry to their methods due to a “planned activity” and that their staff leaders will contact them by way of private e mail or textual content for additional directions.
In right this moment’s SEC submitting, the Fortune 500 retailer says it has additionally reported the breach to related regulation enforcement authorities and that, for the second, the incident had no impression on the corporate’s operations.
“The Company has also notified federal law enforcement. The Company has no knowledge that this incident has disrupted business operations,” DICK’S added.
“The Company’s investigation of the incident remains ongoing. Based on the Company’s current knowledge of the facts and circumstances related to this incident, the Company believes that this incident is not material.”
A DICK’S spokesperson was not instantly out there for remark when contacted by BleepingComputer earlier right this moment.
