A same-day delivery firm owned by logistics giant DPD has suffered a data breach after hackers compromised a portal holding information about its self-employed delivery drivers.
CitySprint announced the data breach to drivers on 7th April. The compromised platform, iFleet, holds personal information about CitySprint drivers, including their driving licence details and weekly earnings.
According to reports, CitySprint shut down the iFleet platform as soon as it learned of the hack and said it had found no evidence hackers had stolen any data. At the time of writing, CitySprint was continuing to investigate and said it would inform drivers if they found otherwise.
In its’ email to drivers, CitySprint reportedly said that it had “deployed forensic cybersecurity experts to thoroughly and comprehensively investigate the incident and assess what data, if any, has been compromised.”
The email continued: “Our security checks, which are not quite complete yet have shown that so far, no personal data was compromised. The remaining checks will confirm if any of your data may have been affected. Therefore, as a precautionary measure, we have informed the Information Commissioner’s Office of the incident.”
A CitySprint spokesperson confirmed to Apex Insight that the incident had taken place, saying: “We recently detected an apparent malicious attempt by a third party to access confidential data from our courier management platform. As soon as this issue was discovered, we took immediate steps to close off external access to this, and launched a full and thorough investigation, led by independent cybersecurity experts. Now that this investigation has concluded, we are pleased to confirm that we believe that no personal data has been compromised. This incident has been reported to the proper authorities and we are in contact with couriers who contract with us about this as a matter of precaution.”
LawPlus Solicitors is monitoring this situation and the outcome of any subsequent Information Commissioner’s Office investigation and will be on hand to support any affected drivers should they wish to explore making a data breach claim.
If you’ve been affected by the CitySprint data breach, you can contact us here to share your details and for a free, no-obligation review of your potential claim.
Image Credit: OleksandrShnuryk / Shutterstock.com