What happened in the Fashion Nexus data breach?
Twingate Team
•
May 9, 2024
In July 2018, a data breach at UK-based ecommerce company Fashion Nexus impacted multiple websites developed by sister company White Room Solutions. The breach affected several UK clothing and accessories brands, exposing a range of customer data. Security researcher Graham Cluley reported the breach after it was discovered by white hat hacker Taylor Ralston. Fashion Nexus and White Room Solutions did not issue a public statement on the incident, but one of the affected brands, Jaded London, acknowledged the breach and confirmed that no sensitive payment information was at risk.
How many accounts were compromised?
The breach impacted data related to approximately 1.28 million individuals.
What data was leaked?
The data exposed in the breach included browser user agent details, dates of birth, email addresses, genders, IP addresses, names, passwords, phone numbers, physical addresses, and purchase information.
How was Fashion Nexus hacked?
The ID breach occurred when white hat hacker Taylor Ralston accessed Fashion Nexus' server, which stored personal data of customers who shopped at websites built by the company. The exposed data included names, phone numbers, email addresses, and MD5-hashed passwords. Fashion Nexus and its sister company, White Room Solutions, resolved the security issue but did not issue a public statement. One of the affected brands, Jaded London, acknowledged the breach and confirmed that no sensitive payment information was at risk.
Fashion Nexus's solution
In response to the data breach, Fashion Nexus took action to secure its platform and prevent future incidents. Although specific details about the enhanced security measures were not disclosed, the company confirmed that the security issue was resolved and the site through which the breach occurred was taken down. Fashion Nexus and its sister company, White Room Solutions, informed the affected brands about the breach, leaving it up to them to notify their exposed customers and report the incident to the Information Commissioner's Office (ICO).
How do I know if I was affected?
Fashion Nexus left it up to the affected brands to notify their exposed customers. If you believe you may have been affected by the breach and haven't received a notification, you can visit Have I Been Pwned to check if your credentials were compromised.
What should affected users do?
In general, affected users should:
Change Your Password: Immediately update your password for the affected account. Make sure the new password is strong and unique, not previously used on any other platform.
Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.
Enable Two-Factor Authentication (2FA): Activate 2FA on the affected account. Consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.
For more specific help and instructions related to the Fashion Nexus data breach, please contact Fashion Nexus's support directly.
Where can I go to learn more?
If you want to find more information on the Fashion Nexus data breach, check out the following news articles:
Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.
What happened in the Fashion Nexus data breach?
Twingate Team
•
May 9, 2024
In July 2018, a data breach at UK-based ecommerce company Fashion Nexus impacted multiple websites developed by sister company White Room Solutions. The breach affected several UK clothing and accessories brands, exposing a range of customer data. Security researcher Graham Cluley reported the breach after it was discovered by white hat hacker Taylor Ralston. Fashion Nexus and White Room Solutions did not issue a public statement on the incident, but one of the affected brands, Jaded London, acknowledged the breach and confirmed that no sensitive payment information was at risk.
How many accounts were compromised?
The breach impacted data related to approximately 1.28 million individuals.
What data was leaked?
The data exposed in the breach included browser user agent details, dates of birth, email addresses, genders, IP addresses, names, passwords, phone numbers, physical addresses, and purchase information.
How was Fashion Nexus hacked?
The ID breach occurred when white hat hacker Taylor Ralston accessed Fashion Nexus' server, which stored personal data of customers who shopped at websites built by the company. The exposed data included names, phone numbers, email addresses, and MD5-hashed passwords. Fashion Nexus and its sister company, White Room Solutions, resolved the security issue but did not issue a public statement. One of the affected brands, Jaded London, acknowledged the breach and confirmed that no sensitive payment information was at risk.
Fashion Nexus's solution
In response to the data breach, Fashion Nexus took action to secure its platform and prevent future incidents. Although specific details about the enhanced security measures were not disclosed, the company confirmed that the security issue was resolved and the site through which the breach occurred was taken down. Fashion Nexus and its sister company, White Room Solutions, informed the affected brands about the breach, leaving it up to them to notify their exposed customers and report the incident to the Information Commissioner's Office (ICO).
How do I know if I was affected?
Fashion Nexus left it up to the affected brands to notify their exposed customers. If you believe you may have been affected by the breach and haven't received a notification, you can visit Have I Been Pwned to check if your credentials were compromised.
What should affected users do?
In general, affected users should:
Change Your Password: Immediately update your password for the affected account. Make sure the new password is strong and unique, not previously used on any other platform.
Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.
Enable Two-Factor Authentication (2FA): Activate 2FA on the affected account. Consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.
For more specific help and instructions related to the Fashion Nexus data breach, please contact Fashion Nexus's support directly.
Where can I go to learn more?
If you want to find more information on the Fashion Nexus data breach, check out the following news articles:
Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.
What happened in the Fashion Nexus data breach?
Twingate Team
•
May 9, 2024
In July 2018, a data breach at UK-based ecommerce company Fashion Nexus impacted multiple websites developed by sister company White Room Solutions. The breach affected several UK clothing and accessories brands, exposing a range of customer data. Security researcher Graham Cluley reported the breach after it was discovered by white hat hacker Taylor Ralston. Fashion Nexus and White Room Solutions did not issue a public statement on the incident, but one of the affected brands, Jaded London, acknowledged the breach and confirmed that no sensitive payment information was at risk.
How many accounts were compromised?
The breach impacted data related to approximately 1.28 million individuals.
What data was leaked?
The data exposed in the breach included browser user agent details, dates of birth, email addresses, genders, IP addresses, names, passwords, phone numbers, physical addresses, and purchase information.
How was Fashion Nexus hacked?
The ID breach occurred when white hat hacker Taylor Ralston accessed Fashion Nexus' server, which stored personal data of customers who shopped at websites built by the company. The exposed data included names, phone numbers, email addresses, and MD5-hashed passwords. Fashion Nexus and its sister company, White Room Solutions, resolved the security issue but did not issue a public statement. One of the affected brands, Jaded London, acknowledged the breach and confirmed that no sensitive payment information was at risk.
Fashion Nexus's solution
In response to the data breach, Fashion Nexus took action to secure its platform and prevent future incidents. Although specific details about the enhanced security measures were not disclosed, the company confirmed that the security issue was resolved and the site through which the breach occurred was taken down. Fashion Nexus and its sister company, White Room Solutions, informed the affected brands about the breach, leaving it up to them to notify their exposed customers and report the incident to the Information Commissioner's Office (ICO).
How do I know if I was affected?
Fashion Nexus left it up to the affected brands to notify their exposed customers. If you believe you may have been affected by the breach and haven't received a notification, you can visit Have I Been Pwned to check if your credentials were compromised.
What should affected users do?
In general, affected users should:
Change Your Password: Immediately update your password for the affected account. Make sure the new password is strong and unique, not previously used on any other platform.
Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.
Enable Two-Factor Authentication (2FA): Activate 2FA on the affected account. Consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.
For more specific help and instructions related to the Fashion Nexus data breach, please contact Fashion Nexus's support directly.
Where can I go to learn more?
If you want to find more information on the Fashion Nexus data breach, check out the following news articles:
Solutions
Solutions
The VPN replacement your workforce will love.
Solutions