Outdoor retailer Kathmandu has revealed a data breach.
In a statement to the market, it revealed that an unauthorised and unidentified third party had been monitoring what customers were inputing into its eCommerce platform for over a month.
The breach occurred between January 8 and February 12.
“During this period, the third party may have captured customer personal information and payment details entered at check-out.”
While Kathmandu did not reveal how many consumers might be affected by the breach, it confirmed it would notify potentially impacted customers directly.
It has also launched an independent forensic investigation into the matter.