The Betfair and Paddy Power brands, that come under the Flutter Entertainment banner, were targeted by a cyber attack this week – with the firm confirming these criminals were able to access personal account information.
Betfair and Paddy Power Cyber Attack Sees Email Addresses and Account Names Obtained
On Tuesday 8th July, Flutter Entertainment – and two of their biggest brands, Paddy Power and Betfair – were the victims of a cyber attack.
This breach saw some customer email addresses and account names accessed – with a ‘significant’ number of accounts targeted.
With many customers receiving emails (see below) to inform them of the cyber attack on two of the best betting sites in the UK – Paddy Power and Betfair – and exactly what information was targeted.
The firm states that details that include emails, usernames, first line addresses, plus resident towns and cities could have been obtained.
Flutter went onto reassure customers they were “not aware” of any personal information being misused – they reminded them to still be wary and vigilant.
Passwords, ID Documents and Payment Details NOT Breeched
The better news surrounding the Paddy Power and Betfair cyber attack is Flutter has also stated that more important information like – ID documents, payment details and account passwords – were not compromised.
A Flutter spokesperson said “We can confirm that our Paddy Power and Betfair businesses have suffered a data incident involving personal information for some of our customers.
“Immediately upon becoming aware of this incident, we informed relevant regulators and authorities and initiated a full investigation, supported by external IT security experts, to understand what happened and how we can better protect our networks and customers. The unauthorised access has been removed and the incident contained.
“Our investigation concluded that the affected information was isolated to limited betting account information. No passwords, ID documents or usable card or payment details were impacted. We are informing all affected customers.
“Safeguarding and securing our customers’ information is of the utmost importance to us.”
It’s understood that Flutter Entertainment have told the Gambling Commission and Information Commissioner’s Office about the Betfair and Paddy Power cyber attacks.
Adding, they feel the hack is over and has been contained.
This latest breach comes just a month since the British Horse Racing Authority was also targeted by a cyber attack, with their internal data systems affected.
Cybercrime On The Rise With More Online Firms Targeted
This latest cyber attack on two leading sportsbooks and online casinos in the UK has further highlighted the real dangers of these incidents.
In 2025 Marks & Spencer had a well-documented attack that impacted their payment systems that affected sales for almost two months. Plus, another leading supermarket – the Co-Op – were also targeted in April.
Meaning it’s not just companies in the UK gambling sector that have been subjected to these threats.
With the British government’s Cyber Security Breaches Survey for 2025 finding that as much as 43% of UK businesses have flagged a cyber attack or breach in the past year alone.
The bigger companies – like Flutter Entertainment – are better equipped to tackle any attacks, but the worry for these increased figures is for the smaller firms and also the customers it impacts.
Based on a recent study by a digital ID platform called Umazi, the SMEs are more likely to be targeted by cyber criminals due to their lack of infrastructure in dealing with them.
The study said that 70% of smaller companies (SMEs) are concerned that any personal data or business information they might hold could be threatened or stolen.
With the smaller firms less likely to be able to stop them or have the processes in to slow them down.
Umazi’s Cindy van Niekerk said “This isn’t a digital economy, it’s a digital illusion. While regulators and corporates applaud innovation, SMEs are being left behind with legacy processes that actively undermine cybersecurity and economic growth.”
The British government is aware of the current risks and threats – and in recent years has tried to stamp out more cyber attacks with legislation that includes the Produce Security and Telecommunication Infrastructure Act.
Andy is an experienced betting and gambling journalist with over 20 years industry experience. He brings an excellent knowledge of the world of sports betting and industry gambling news.
