A cyberattack on one of Lidl's IT service providers exposed customer data from the discount giant's online shop.
Lidl published breach notifications on its Netherlands, Belgium, and Germany websites after unknown attackers briefly accessed a separately stored file containing customer data. The stolen information includes full names, phone numbers, email addresses, dates of birth, and customer numbers. Passwords, payment details, and addresses were not taken, and customer accounts themselves remain intact. Lidl says it responded immediately, brought in forensic investigators, and notified data protection authorities in the affected countries.
The breach is a reminder that supply chain risk doesn't stop at the warehouse door — a retailer with nearly 12,900 stores across 32 countries is only as secure as its least-hardened vendor. Lidl hasn't named the IT provider or disclosed how many customers are affected, which makes it impossible to gauge the true scale right now.
With names, birthdays, and emails in hand, phishing attacks are the obvious next move for whoever took the data — Lidl is already warning customers to watch for them, which is the right call and also the bare minimum.