The cosmetics company Rituals has fallen victim to a data breach in which various customer details were leaked.
Cosmetics company Rituals has fallen victim to a data breach in which various customer details have been exposed. “We have determined that a portion of our members’ data was unlawfully downloaded,” stated Rituals. The hackers no longer have access to the servers, but a significant amount of customer data was stolen. This reportedly includes information such as addresses, email addresses, and phone numbers.
This is yet another cyberattack in a single month. Recently, Basic-Fit and Booking.com were also affected by data breaches.
Customer Data Leaked
Rituals is currently not providing further details on exactly how many customer records were leaked. It reportedly involves various types of data from Belgian and Dutch customers, such as full names, addresses, email addresses, phone numbers, dates of birth, and gender.
“Immediately upon discovery, we terminated the unauthorized access and launched an investigation. Additional security measures have been implemented to prevent a recurrence in the future. We have reported the incident to the Data Protection Authority. The situation is now under control,” Rituals reports on its FAQ page.
Phishing risk
While fortunately no passwords or payment details were leaked, it does not mean such a data breach is not dangerous. With this valuable source of information, malicious actors can carry out highly targeted phishing attacks.
Rituals is also aware of these dangers. “Be extra alert for suspicious emails, text messages, and phone calls. Never respond to messages asking you to enter or provide sensitive information, such as passwords.”