Details including the email and home addresses of around 650,000 fashion shoppers were stolen following a security breach at ecommerce platform provider Fashion Nexus.
The data breach allowed hackers to access customer details from fashion brands including Elle Belle Attire, AX Paris and Traffic People. Online fashion retailers Perfect Handbags and DLSB were also believed to be affected.
Fashion Nexus said that on or around 9 July a “white hat hacker” or “ethical hacker” breached one of company’s web servers.
Immediately after the incident, clients were advised to file reports with the Information Commissioner’s Office, and Fashion Nexus also filed a breach report.
Initial reports stated that 1.4 million users had their details hacked. However, Fashion Nexus said the figure was lower. Around 650,000 of its clients’ customers were believed to be affected.
The majority had their names and email addresses accessed, and one-fifth also had their home address details accessed. No payment card information was stored in the databases.
Rob Sherwood, director at Fashion Nexus, said: “Our experience with this as a small company has been extremely stressful and unsettling. Contrary to the way we’ve been portrayed in the IT security press, we care deeply about our clients and the rights of their customers.
“As a small business with limited resource and funding, we had put in place security measures but clearly, somehow, this wasn’t sufficient to prevent an attack, and we can’t apologise enough to our clients and their customers.”