Flutter Entertainment has confirmed a data breach affecting personal details of some customers on its Paddy Power and Betfair platforms. However, the incident was quickly contained, with immediate steps taken to secure systems and notify authorities.

In a statement, Flutter clarified that the breach did not involve sensitive data like passwords, payment details, or identification documents. However, it confirmed that other information might have been compromised. This includes usernames, email addresses, contact numbers, and partial address details.

The company explained that there is currently no evidence that the stolen data has been misused. But customers are urged to stay alert for suspicious activities.

Company Response and Customer Notification

The Flutter team acted fast upon discovering the breach. A spokesperson told the Racing Post:

“We can confirm that our Paddy Power and Betfair businesses have suffered a data incident involving personal information for some of our customers. Immediately upon becoming aware of this incident, we informed relevant regulators and authorities and initiated a full investigation, supported by external IT security experts.”

The company believes the breach was limited in scope. An investigation revealed that only certain customer data was affected, and no passwords or payment information were accessed. “The unauthorised access has been removed and the incident contained,” the statement continued.

Flutter has contacted affected customers via email and reassured them that every measure will be taken to prevent further incidents. “Safeguarding and securing our customers’ information is of the utmost importance to us.”

Regulatory Notification and Wider Context

The Gambling Commission and the Information Commissioner’s Office have been notified of the breach. Flutter has also committed to strengthening its cybersecurity protocols in response to the incident. The breach adds to a growing list of cyberattacks on significant organisations in the UK.

Last month, the British Horseracing Authority reported a cyberattack on its internal systems. Earlier in the year, Marks & Spencer was hit by a major breach, disrupting sales for six weeks. In April, the Co-op also experienced a cyberattack crippling its supermarket and funeral service operations.

These incidents highlight the growing need for robust data protection across all sectors, particularly for companies that handle large volumes of personal information.

A Key Week for Flutter

The timing of the data breach is notable, as Flutter’s shares began trading on the New York Stock Exchange this Monday. This move is a significant step in the company’s expansion across the U.S. sports betting market.

Despite the breach, Flutter remains confident in its security protocols and customer trust. The company has pledged to support those affected and provide necessary updates. Customers are encouraged to monitor their accounts and stay vigilant.