Internet and land betting giant Paddy Power was reportedly compromised back in 2010, allowing personal information on 649,000 punters to accessed, this according to the Irish Independent newspaper.
The report claims that 120,000 of the customers are based in Ireland, while others are spread across the UK and Europe. Information thought to have been released includes names addresses, and dates of birth. Financial information was reportedly spared.
Paddy Power acknowledged the breach occurred and knew about the hacking in 2010, but has not given reasons why it did not inform players of the breach.
According to the paper, the hacker suspected of stealing the data lives in Toronto, and had his home raided and the data recovered.
"The company verified that the data had come from its system," the Irish Independent wrote. "It then commenced legal proceedings in Ontario to secure possession of computer equipment owned by the person who was holding the Paddy Power data. The company liaised with local police in Ontario. It’s understood the person was residing in Toronto."
It is currently unknown whether or not the hacker will face criminal charges in Canada, but Paddy Power was quick to respond to the story.
Commenting on the breach Paddy Power's Managing Director of Online Peter O'Donovan said, “We sincerely regret that this breach occurred and we apologize to people who have been inconvenienced as a result. We take our responsibilities regarding customer data extremely seriously and have conducted an extensive investigation into the breach and the recovered data."
"That investigation shows that there is no evidence that any customer accounts have been adversely impacted by this breach. We are communicating with all of the people whose details have been compromised to tell them what has happened."
“Robust security systems and processes are critical to our business and we continuously invest in our information security systems to meet evolving threats. This means we are very confident in our current security systems and we continue to invest in them to ensure we have best in class capabilities across vulnerability management, software security and infrastructure."