Sephora Online Hit by Data Breach

July 30, 2019

Sephora, a popular makeup and online store, was hit by a data breach that affected customers from Southeast Asia, New Zealand and Australia.

In an email sent to affected customers, Sephora said the data breach resulted in the exposure of personal information to unauthorized third parties, according to a news report.

In the email, Sephora says, "Some personal information may have been exposed to unathorized third parties, including first and last name, date of birth, gender, email addresses and encrypted password, as well as data related to beauty preferences."

The company said that no credit card information was accessed, and the email continued to say that Sephora has no reason to believe that any personal data has been misused, according to a news report. Once Sephora became aware of the incident, it said it immediately appointed independent experts to help investigate and as soon as it was able to verify the details of the incident, it notified affected customers.

In the email sent, Sephora says, "As a precaution, we have cancelled all existing passwords for customer accounts and have thoroughly reviewed our security systems. We are also offering a personal data monitoring service, at no cost to you, through a leading third-party provider."

How can you advance your career in the security industry with the skills and competencies necessary to benefit your organization? What will the security executive and the security function of the future look like? Join us as we hear from veterans in the security industry about their experiences, their lessons learned, and best practices for advancing their careers.