JD Wetherspoon has confirmed its database of 656,723 customers was hit by a cyber attack in June 2015.
The pub chain was only recently informed, according to the BBC.
The attack took place in June 2015 and targeted the company’s old website, which has since been replaced. Wetherspoons, which operates more 953 pubs, insisted that only “extremely limited” credit and debit card details of 100 customers, who had bought vouchers online, and had been taken.
The founder of JD Wetherspoon has pledged to make “strenuous efforts to improve security” after the pub chain became the latest British company to be hit by a cyber attack.
“As far as I’m concerned, there’s no need for Wetherspoon to hold customer information in future,” founder and chairman Tim Martin said, adding the firm will “try and store the absolute minimum amount”.