Sephora, a popular makeup and online store, was hit by a data breach that affected customers from Southeast Asia, New Zealand and Australia.
In an email sent to affected customers, Sephora said the data breach resulted in the exposure of personal information to unauthorized third parties, according to a news report.
In the email, Sephora says, "Some personal information may have been exposed to unathorized third parties, including first and last name, date of birth, gender, email addresses and encrypted password, as well as data related to beauty preferences."
The company said that no credit card information was accessed, and the email continued to say that Sephora has no reason to believe that any personal data has been misused, according to a news report. Once Sephora became aware of the incident, it said it immediately appointed independent experts to help investigate and as soon as it was able to verify the details of the incident, it notified affected customers.
In the email sent, Sephora says, "As a precaution, we have cancelled all existing passwords for customer accounts and have thoroughly reviewed our security systems. We are also offering a personal data monitoring service, at no cost to you, through a leading third-party provider."