DICK's Sporting Goods reports data breach after cyberattack

DICK'S Sporting Goods, the largest sporting goods retailer in the U.S., has reported a cyberattack that exposed confidential information on its systems.

The breach, detected on August 21, 2024, prompted the company to shut down its email systems and lock employee accounts to contain the threat and prevent further unauthorized access.

 DICK'S detected unauthorized access by a third party to portions of its information systems containing confidential information. As a precautionary measure, DICK'S shut down its email systems and locked all employee accounts. Employees must now have their identities manually validated on camera by IT staff before regaining access to internal systems. Team leaders are instructed to contact employees through personal emails or texts with further instructions.

The nature of the attack, exposed data types or impacted individuals have not been disclosed. What's more, employees have been directed not to discuss the incident publicly or in writing.

DICK'S has hired external cybersecurity experts to assess the full scope of the attack and has notified federal law enforcement authorities. The company is actively investigating to determine the extent of the breach.