Cyber-attack at fashion website affects 39 million individuals' data

Synopsis

In September 2018, the fashion company disclosed that they had suffered a "sophisticated" cyber attack that had exposed the private information of 6.4 million customers. The company explained that hackers infiltrated their servers through "back door entry points which were later closed and removed".

The exposed information consisted of customers' email addresses and encrypted password credentials for individuals who registered on the company's website.

In October 2022, the parent company was fined $1.9 million by the New York attorney general for failing to maintain reasonable security measures to protect customers’ data and for failing to notify 32.5 million customers of the breach of their information.

Free consultation

Want to discuss this case? We're offering a FREE 20 minute phone consultation with our analysts to discuss this case and the implications it has for your organisation. Just select the time and date that works for you:

Companies

  • SheIn.com
  • ZOETOP BUSINESS COMPANY, LIMITED

We've done the analysis so you can make the decisions

$489.99
When purchasing a minimum of 5 Case Studies
$699.99 if buying less than 5.

  • Detailed cause & effect analysis
  • Lessons learnt catalogued
  • Preventive controls extracted
Add to Cart
Heads up! Want to try before you buy? You can download our FREE demo case study here