Cyber AttacksData Breaches

SHEIN Online Shopping Site Suffers Data Breach


SHEIN which is an online fashion retailer in US has revealed that the company has suffered a major data breach after unknown attackers stole personally identifiable information (PII) of around 6.5 million customers.

SHEIN was founded in 2008 and was based in North Brunswick, it has become one of the largest online fashion retailers with delivery done to more than 80 countries worldwide. The site has been initially designed to produce reasonable and trendy fashion clothing for women.

It was last weekend that the company revealed that its servers had been targeted by a “concerted criminal cyber-attack” that began in June 2018 and lasted until August 22 only when the company came to know about the theft.

Immediately the company scanned its servers to remove all possible backdoored entry points, leveraging which hackers could again infiltrate the servers. SHEIN assured its customers that the website is now safe to visit.

Hackers Stole Over 6.42 Million Customers’ Data

The complete details about the incident is still not known and the company revealed that the hackers managed to gain access to personal information which includes the email addresses and encrypted password credentials for 6.42 million customers who registered on its website.

The company said that they do not store any credit card information on their systems and so there is no evidence that any credit card information of its customers was taken from its systems.

After knowing about the theft, SHEIN immediately hired a leading international forensic cybersecurity firm and an international law firm to launch a thorough investigation into the breach.

The company had started contacting all affected customers and urge them to change passwords for their online store accounts by either clicking the link provided in their email notification or by logging into their SHEIN account to change the password.

If the customers feel that their credit card information has been compromised, the company advise them to directly contact their respective banks or credit card companies with any concerns.

Priyanka R
Cyber Security Enthusiast, Security Blogger, Technical Editor, Author at Cyber Safe News

    Bitcoin Core DDoS Attack Vulnerability Receives a Patch

    Previous article

    How to Protect Your Cell Phone Against Spy Software

    Next article

    You may also like


    Leave a reply

    Your email address will not be published. Required fields are marked *