Online fashion store SHEIN announced a security breach last week that affected around 6.42 million of its customerbase. The North Brunswick-based company is currently in the process of contacting all affected users and asking them to change passwords for their online store accounts.
The company says the breach occurred over the summer, sometime in June, when hackers carried out "a sophisticated criminal cyberattack on its computer network."
Also: Best Home Security Devices for 2018 CNET
No technical details were provided about how the actual breach went down, but SHEIN said the intruders managed to gain access to customers' email addresses and encrypted passwords for its online store accounts.
The company discovered the incident on August 22, according to a press release SHEIN circulated on Friday, September 21.
"We have seen no evidence that your credit card information was taken from our systems and SHEIN typically does not store credit card information on its systems," the company said in an advisory posted on its website.
Also: Why 31% of data breaches lead to employees getting fired TechRepublic
The retailer says it hired a well-known forensic cybersecurity firm as well as an international law firm to help it investigate the incident further.
SHEIN, also spelled SheIn, is a US-based online store dedicated to women's fashion. The company was founded in 2008, and it currently ships to over 80 countries all over the world.
Previous and related coverage:
Cyber attacks and malware are one of the biggest threats on the internet. Learn about the different types of malware - and how to avoid falling victim to attacks.
This simple advice will help to protect you against hackers and government surveillance.
Whether you're in the office or on the road, a VPN is still one of the best ways to protect yourself on the big, bad internet.
If you can't answer these basic questions, your security could be at risk.
Retired US Air Force cyber-security expert shares his thoughts on the future of critical infrastructure security.
Researchers turn ordinary WiFi devices in rudimentary scanners that can identify potentially dangerous objects hidden inside bags or luggage.
- Nasty piece of CSS code crashes and restarts iPhones
- FragmentSmack vulnerability also affects Windows, but Microsoft patched it
- Data breaches affect stock performance in the long run, study finds
- Why the 'fixed' Windows EternalBlue exploit won't die
- AdGuard resets all user passwords after credential stuffing attack
- Twitter notifies users about API bug that shared DMs with wrong devs
- Wendy's faces lawsuit for unlawfully collecting employee fingerprints
- Canadian retailer's servers storing 15 years of user data sold on Craigslist
- US ISP RCN stores customer passwords in cleartext