Sharp confirms security incident, personal information of thousands of customers breached
Sharp’s official online store Cocoro Store and its food delivery service Hercio Deli have suffered a data breach, compromising personal information of over 5,000 of its customers.
According to Sharp, the breach was detected on July 22, 2024. An external cybersecurity firm analyzed logging files on PCs, servers and network equipment to get an idea of the impact and scope of the incident.
Researchers have concluded that the threat actor responsible for the attack exploited a software vulnerability to gain unauthorized access to personal details of 5,836 customers between July 19 and July 22.
The attacker was able to collect personal data, including names, addresses, zip codes, phone numbers, email addresses and passwords. 4,257 people were unfortunate enough to have their financial information been stolen too, including credit card number, card name holder, expiration date, and security code.
“If you entered your credit card information or personal information in the Cocoro Store or on the Hercio Deli website during the period and confirmed your order, it was discovered that the information may have been transferred externally and illegally,” the company says in a press release.
Sharp promises to contact all affected customers by email and letter. Software updates have been implemented to eliminate all existing vulnerabilities. Financial transactions are being monitored in cooperation with credit card companies. People who wish to replace their credit card because of the incident, can do so free of charge.
Sharp says it takes the situation seriously and has already strengthened its security measures to prevent recurrence, such as adding intrusion detection systems, enhancing regular self-diagnosis and reviewing security rules.
The website of the online Cocoro Store and Hercio Deli food delivery service will be reopened as soon as it's ready.
As of writing, no one has claimed responsibility for the cyberattack on Sharp.
Your email address will not be published. Required fields are marked