Wiggle investigating suspected cyber attack on customers' accounts

Some customers have highlighted money being taken for goods they never ordered to be delivered to addresses they don't know...

by Simon_MacMichael

Mon, Jun 15, 2020 17:30

Wiggle has promised to get back to customers directly regarding an alleged cyber attack on its website.

The online multisport retail giant appears to have fallen victim to a cyber security breach, with a number of its customers reporting that they have received order confirmations for items they didn't purchase, and the delivery addresses were to locations they didn't recognise.

@Wiggle_Sport Are you under cyber attack? I've received an email to say someone's changed my account to their email address and I cant access your website.

— hayley badger (@hayleybadger) June 14, 2020

After alerts were first raised on 12 June and there were reportedly no responses from Wiggle on the matter, one customer got in touch with road.cc directly today to claim that a £30 order was made on his account.

In the tweet below, another claimed that an order for a £237.50 Castelli skinsuit was made without his knowledge.

@Wiggle_Sport someone broke into my account and ordered this. I told c ustomer services as it happened but no one has come back to me. pic.twitter.com/ydhe8tDUiU

— Kobi Omenaka (@Kobestarr) June 15, 2020

The tweet below is the first we have seen where Wiggle confirmed it is taking action, saying its account security team is investigating and customers affected will be contacted directly.

@Wiggle_Sport Are you under cyber attack? I've received an email to say someone's changed my account to their email address and I cant access your website.

— hayley badger (@hayleybadger) June 14, 2020

A number of people who say they have been targeted had complained on Wiggle's social media pages, but in most cases the retailer appears to have just issued brief responses with no further acknowledgement regarding the issue; road.cc has asked Wiggle for a statement.

Wiggle

cyber attack

online security

Simon MacMichael

Simon joined road.cc as news editor in 2009 and is now the site’s community editor, acting as a link between the team producing the content and our readers. A law and languages graduate, published translator and former retail analyst, he has reported on issues as diverse as cycling-related court cases, anti-doping investigations, the latest developments in the bike industry and the sport’s biggest races. Now back in London full-time after 15 years living in Oxford and Cambridge, he loves cycling along the Thames but misses having his former riding buddy, Elodie the miniature schnauzer, in the basket in front of him.

Add new comment

33 comments

kil0ran replied to Compact Corned Beef | 4 years ago

0 likes

Yep, and we will be after the transition period too

samcritchlow | 4 years ago

1 like

This happened to me on 05 June. I saw an email notification pop-up, "Confirmation of your order ###### from Wiggle". Checked the email straight away, and it was an item I'd not ordered to an address in another country.

Thankfully, since I was using the computer at the time, I instantly cancelled the order, removed my saved card details and changed the account password. I then followed up by contacting Wiggle to say that I thought my account had been compromised. 9 days later and I've recieved an email from them as per below:

Quote:

Thanks for your email bringing this issue to our attention. I have passed your details to our Account Security team who will be in touch shortly to discuss this further. Your patience in the meantime is greatly appreciated."

lostshrimp | 4 years ago

7 likes

The other half has just seen his order for the San Remo speed suit and he has had to quickly come up with an excuse. "Oh my account must have been hacked, I wouldn't spend £237 just to save a couple of watts"

Latest Comments

Veganpotter 6 hours 51 min ago

It's not too bad. Most just make enough to get by and make people have to accept waiting or a different color. They know people are going to be...

in: One bike to rule them all and the lightweight aero bike
eburtthebike 7 hours 36 min ago

Indepent drivel: I like it.

in: Independent column claims cyclists jump red lights at 40mph
eburtthebike 7 hours 40 min ago

Cycling for mind: Some seriously shit steering there.

in: Cycling live blog 26 July 2024
Another_MAMIL 9 hours 16 min ago

I found Velocio Luxe mitts even higher quality than my Assos gloves. (Velocio's Luxe gloves are a step up from the Race mitts reviewed above.)...

in: Velocio Race Gloves
perce 9 hours 50 min ago

Have you been on a train recently?

in: Couple cycling from UK to Africa have bikes stolen
chrisonabike 11 hours 1 min ago

I like this sales attitude! Old style UK deprecation. "There are better brands - but try our pedals. Some people like them."...

in: Clipless Pedal Development - We need your help!
HLaB 11 hours 53 min ago

The world's biggest violin, meanwhile I'm playing the world's smallest

in: Drivers and their problems
mctrials23 11 hours 58 min ago

You would like to think that 7 might make it a bit harder to ignore but I'm sure there will be a good excuse

in: Police investigate collision with group ride of cyclists
MrE 11 hours 59 min ago

Perhaps he followed the suggested Shimano online anti counterfeit link and saw that Shimano's opening header says "... crackdown in China.."?

in: How can you spot counterfeit bike components?
Martynofsheepy 12 hours 23 min ago

Especially the fat ones.

in: Town to trial speakers playing 'no cycling' message