Funky Pigeon is a greeting card company that allows customers to customize the card that they are buying with different designs and names already printed on the card.
The British retailer owned by WHSmith has suspended any new orders coming through its website after it reported a “cyber incident” on Tuesday. The cyberattack was discovered last Thursday causing Funky Pigeon to initiate a forensic investigation. They say they have taken their ordering systems offline “as a precaution measure” stating “We take the security of customer data very seriously” and “We have also informed the relevant regulators and law enforcement authorities and will continue to review and update our protocols based on what we learn from this incident.”
The retailer has notified all customers that made a purchase over the last year of the incident. However, the company does not believe any sensitive customer data, such as payment details or passwords, has been breached. They commented that their payment system is processed by a third party and is encrypted making it separate and secure.
The investigation taking place will examine whether any other data such as names, addresses, email addresses, and customised card designs have been compromised.
If you have made a purchase from Funky Pigeon in the last year, even though passwords are not likely to be involved, we’d recommend changing your password for the account.