SHEIN data breach

SHEIN Fashion Site Victim to Data Breach, Exposing 6.5 Million Users

Founded in 2008 in North Brunswick, SHEIN has become one of the largest online fashion retailers, designed to bring trendy fashion clothing to women at a low price point. Last weekend, SHEIN endured a data breach, affecting about 6.42 million customers.

Beginning of June until August 22, the servers have been targeted by a group of malicious hackers.

“While the full extent of the attack will continue to be investigated, it can now be confirmed that the personal information illegally acquired by the intruders included email addresses and encrypted password credentials of customers who visited the company website.”

They infiltrated the system and stole email addresses and encrypted password credentials of 6.42 million registered customers.

“It is our understanding that the breach began in June 2018 and continued through early August 2018 and involves approximately 6.42 million customers.”

The company ran security scans to remove all possible backdoor entry points, blocking the hackers from infiltrating the server.

SHEIN states that credit card information is typically not stored on its system, so no payment details were compromised.

The company hired an international forensic cybersecurity firm and an international law firm to launch a thorough inspection of the data breach.

SHEIN contacted exposed customers, requesting them to change their password for their online store account.  A link was included in the email notification or customers can find “Edit Password” under the “Account Setting” tab.

Original Article Found Here.

  • 4