A Flutter Entertainment UKI spokesperson has confirmed to iGaming Expert that the company’s Paddy Power and Betfair brands have suffered customer data breaches.
iGaming Expert understands that customers’ betting account usernames and email addresses may have been taken, but not their passwords, ID documents, usable cards or payment details.
A significant number of Paddy Power and Betfair customers, mainly UK and Ireland-based, have been affected by the data breach, and customers impacted have been informed. However, not all Paddy Power and Betfair customers have been affected.
In a statement to iGaming Expert, Flutter emphasised that it has informed the UK Gambling Commission and the Information Commissioner’s Office of the data breach, which is believed to now be fully isolated, contained and over.
“We can confirm that our Paddy Power and Betfair businesses have suffered a data incident involving personal information for some of our customers,” a Flutter UKI spokesperson told iGaming Expert.
“Immediately upon becoming aware of this incident, we informed relevant regulators and authorities and initiated a full investigation, supported by external IT security experts, to understand what happened and how we can better protect our networks and customers. The unauthorised access has been removed and the incident contained.
“Our investigation concluded that the affected information was isolated to limited betting account information. No passwords, ID documents or usable card or payment details were impacted. We are informing all affected customers. Safeguarding and securing our customers’ information is of the utmost importance to us.”
Flutter is set to report its financial results for the second quarter of 2025 on 7 August.
The Paddy Power and Betfair data breach follows the British Horseracing Authority being the target of a cyber attack last month, which affected internal systems and data. Cyber incidents have also occurred recently for UK retailers Marks and Spencer and The Co-op.
According to CityAM, Marks and Spencer’s Chair Archie Norman highlighted to lawmakers this week the importance of the UK bringing its cybersecurity up to the same levels as other parts of the world, saying it should be the aspiration of the country to have high cyber standards.
Reflecting on when the retailer suffered a cyberattack back in April, Norman stressed: “It’s not an overstatement to describe it as traumatic. We’re still in the rebuild mode, and we will be for some time to come.”
Welcome to Gambling Consulting Authority (GCA) - Your Strategic Partner in Gambling Industry Advancement
