Hacked: Clothing Retailer Patagonia Australia; Customer Details Compromised
The hits keep on coming. A number of Australian retailers have been hacked in the recent past, and the latest breach-made-public involves outdoor clothing retailer Patagonia, with the potential compromise of 12,500 customers’ personal and financial data.
California-based clothing retailer Patagonia has revealed that it was the target of a cyberattack aimed specifically at its Australian website. The outdoor-clothing retailer tentatively believes that credit and debit card details of some 600 customers who made online purchases between August 4 and September 12 could be at risk, according to ABC News Australia.
The extent of the breach may prove to be a whole lot more significant, however, as 12,500 other customers may have had their details also compromised. The ‘potentially’ breached data includes:
- Account details and passwords, the latter that can be used to access customers’ other accounts elsewhere if passwords are similar.
- Email addresses.
- Mailing addresses.
The retailer cites “an abundance of caution” as the reason to provide notice of the breach, despite no evidence of unauthorized attempts to access the website registration data.
The company contends that the incident was contained on September 12, more than a month after the initial breach and insists that the compromise affects its Australian website – www.patagonia.com.au, alone.
In a statement to ABC, Patagonia said:
Upon becoming aware of the potential threat, Patagonia promptly engaged outside forensic experts to investigate the incident and to assist us in developing a better understanding of the situation.
We have already taken steps to strengthen our website security and are continuing to design and implement enhanced security measures in order to prevent this type of incident from occurring.
Australian Retailers Are Firmly in the Hackers’ Crosshairs
Retailers are seen as a rich resource for whole swarms of user data including personal and financial details, which make them targets for attackers and malicious hackers.
Fashion retailer David Jones was also the target of a breach earlier this month and although the company insists no credit card details were breached, the revelation came just a day after retailer Kmart Australia admitted to being the victim of a breach where customer data was stolen.
Altogether, the breaches clearly highlight the lack of a competent cybersecurity infrastructure in websites that handle a large volume of transactions on a daily basis, leaving thousands and even millions of customers vulnerable to malicious hackers looking for their ill-gotten gains.
Image from Shutterstock.