Every Pandora customer sent email after three key pieces of information stolen

Every Pandora customer has been sent an email after three key pieces of data were stolen by hackers. The jewellery chain played down the cyber attack and said "only very common types of data" were taken and that no passwords or credit card details were involved.

It reported that the attacker had accessed the information through a third-party platform that it uses. The three pieces of data stolen were name, birthdate, and email address.

"We want to reassure you that the attack has been stopped, and as a result we have further strengthened our security measures," Pandora said in an email to customers.

"Only very common types of data were copied by the attacker - specifically name, birthdate, and email address. We'd like to stress that no passwords, credit card details or similar confidential data were involved in this incident.

"We have carried out extensive checks and to date we cannot see any evidence that this data has been shared or published." It has urged customers to pay attention to unusual emails and online activities requesting data as it could be phishing attempts from third parties pretending to be associated with Pandora.

"While incidents like these have unfortunately become more common in recent years, especially among global companies, we take this matter very seriously. We deeply regret any inconvenience this may cause you," Pandora added.

Retailers including M&S, Co-op, Harrods, Adidas and Chanel are among the list of brands that have been hit by cyber attacks in recent months.

M&S was forced to come to a near complete halt in April when it was hit by a cyber attack. The retail giant has estimated the month-long disruption will wipe around £300m off its profit for the year.

Christoph C. Cemper, founder of the AI prompt experts AIPRM said: "As Pandora has rightly warned, the affected emails are now vulnerable to phishing attacks, which if successful, can allow hackers to steal vital information, or lead to financial loss if the user clicks any links or downloads malicious attachments."

"Always be cautious of any emails requesting 'immediate' action, as this is a common tactic attackers use in phishing attempts, particularly messages related to purchases or urgent account issues. If you have any doubt, always refrain from clicking any links or attachments."

"While passwords were not compromised in this case, exposed email addresses could still be used to attempt logins on other sites.. That's why I strongly recommend enabling two-factor authentication (2FA), wherever possible. I'd also recommend anyone who uses the same password across multiple sites (or uses the same password as their Pandora password) to change this, and create unique passwords for each account."