HIGH STREET BAKING AND STORAGE SHOP Lakeland has informed its customers in a statement that it suffered a cyber assault and needs to reset its users' passwords.
It has emailed the statement to its customers and posted it to its website. It has also used its Twitter account to stress the importance of its scorched password policy.
"Late on Friday July 19th we discovered that the Lakeland website was being attacked by hackers in a sophisticated and sustained attack. Immediate action was taken to block the attack, repair the system and to investigate the damage done and this investigation continues. Today it has become clear that two encrypted databases were accessed, though we''ve not been able to find any evidence that the data has been stolen," it said in its statement.
"However, we have decided that it is safest to delete all the customer passwords used on our site and invite customers to reset their passwords. Next time you log-in to your Lakeland account you will be asked to reset your password and provide a new one.
"It is not necessary to do this straight away, just the next time you want to use the account."
Users are advised to change any other logins on websites where they might have used the same password, and the words "sophisticated and sustained" are not particularly consoling.
@stuartmycock We have no evidence that any card data has been compromised. We only suggest our customers change their password...— Lakeland (@LakelandUK) July 23, 2013
Overnight the firm tweeted that its IT people were "working around the clock to identify and understand the full extent of this incident and block it".
"Hacking the Lakeland site has taken a concerted effort and considerable skill," it added. "We only wish that those responsible used their talent for good rather than criminal ends." µ
It's time for our regular two-step through the Google news
Bug bounty offer: accepted