Cyber Incident Victim: Funky Pigeon
Date:
Apr 2022
Location:
United Kingdom
Summary
An online greetings card and gifts retailer experienced a cyber-attack prompting an immediate suspension of new orders and temporary shutdown of systems to contain the incident. The company confirmed payment data remained secure and account passwords were likely unaffected, but initiated a forensic investigation to determine if attackers accessed customer names, addresses, email addresses, or personalized designs. Authorities and regulators were notified, with ongoing efforts focused on resolving the breach and updating security protocols. Customers received direct notifications and apologies for disruptions, while operations remained halted pending investigation. This incident followed another recent cyber-attack affecting a separate retailer, underscoring broader sector vulnerabilities.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 3 motives | 3 techniques |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
Funky Pigeon, an online greetings card and gifts retailer owned by WH Smith, suspended all new orders following a cyber-attack discovered on April 14, 2022. The company immediately took its systems offline as a precautionary measure, halting order fulfillment operations. It launched a forensic investigation led by external experts to assess the incident's scope and potential impact on customer data. Funky Pigeon proactively notified all customers from the preceding 12 months about the breach via written communication, emphasizing that payment data remained secure and account passwords were likely unaffected. The investigation focused on determining whether attackers accessed personal information, including customer names, addresses, email addresses, and personalized card/gift designs created through the platform.
The company formally reported the breach to relevant regulators and law enforcement agencies while maintaining continuous operational reviews to update security protocols based on investigation findings. Funky Pigeon's public statement acknowledged the disruption caused to customers and apologized for related concerns, confirming round-the-clock efforts to resolve the incident. No specific technical details about the attack vector or perpetrator were disclosed publicly. The suspension of services occurred amidst heightened cybersecurity concerns in the UK retail sector, coming two weeks after retailer The Works experienced a separate cyber-attack that forced store closures and disrupted supply chain operations. Funky Pigeon committed to providing further updates to affected parties as their investigation progressed, though no definitive timeline for service restoration was announced in the initial disclosure.