Go to listing page

Makeup Giant Sephora Suffers Data Breach Exposing Customer Credentials

Makeup Giant Sephora Suffers Data Breach Exposing Customer Credentials
  • Customers who used Sephora’s online services in Singapore, Malaysia, Indonesia, Thailand, Philippines, Hong Kong SAR, Australia, and New Zealand were impacted by the breach.
  • The exposed information includes customers’ names, dates of birth, gender, email addresses, beauty preferences, and encrypted passwords.

What happened?

Sephora, the online shopping site for beauty products, cosmetics, and skincare products suffered a data breach compromising the personal information and login credentials of its customers.

A brief overview

The makeup giant suffered a data breach after unauthorized third-parties gained access to customers’ personal information.

Customers who used Sephora’s online services in Singapore, Malaysia, Indonesia, Thailand, Philippines, Hong Kong SAR, Australia, and New Zealand were impacted by the breach.

What information was exposed?

  • The exposed information includes customers’ names, dates of birth, gender, email addresses, beauty preferences, and encrypted passwords.
  • However, no credit card information was involved in the data breach incident.

“Please be reassured that no credit card information was accessed, and we have no reason to believe that any personal data has been misused,” Alia Gogi, MD SEA at Sephora said in a security notice, Stuff reported.

What actions were taken?

  • Upon learning the incident, Sephora launched a thorough review of its security systems.
  • The makeup giant canceled all existing passwords for customer accounts and requested its customers to change their passwords.
  • The beauty products company is also offering free personal data monitoring services for all impacted customers.
Cyware Publisher

Publisher

Cyware