Personal information of one million Glamira customers added to HIBP
Last year, online jewelry store Glamira leaked personal information of approximately one million of its customers. Their information has now been added to the Have I Been Pwned database.
The incident occurred over a year ago, in December 2023. Several customers reported that Glamira had leaked their personal information, including full names, email addresses, phone numbers, customer IDs, and purchase history.
However, victims of the data breach were never informed about it. One of Glamira’s customers whose data had been compromised reached out to the retailer and got a response.
According to the jewelry store, one of its servers was accessed by an ‘unauthorized individual’. “Upon discovery, we immediately took action to investigate and minimize the impact (including by resetting all login credentials). As a result of this incident, there has been limited exposure of customer personal data,” Glamira stated.
The jewelry seller emphasized there was no immediate risk, because the affected server didn’t contain sensitive financial information, nor log-in details like passwords. “But we recommend staying vigilant for any unusual or suspicious activities, such as phishing emails,” the company added.
Troy Hunt, a cybersecurity expert from Australia, says that a total of 875,000 email addresses were breached and published on a popular hacking forum on the dark web back in 2023. Those have now been added to Have I Been Pwned, allowing victims to check whether their data has been leaked.
According to Hunt a total of 68 percent was already mentioned in the Have I Been Pwned database.
Your email address will not be published. Required fields are marked