Fortnum & Mason's 23000 customers' details accessed

A 310-year-old upmarket department store in London, famously known as the “Queen’s grocer”,  has admitted that their thousands of customers are the latest victim of a major data hack.

The retailer Fortnum & Mason said that personal information of about 23,000 customers was exposed through a partner company, Typeform, specialized in creating surveys and forms. The company has partnered with  Typeform for its recent food and drink awards.

 The hackers hacked into their database and downloaded information, however, the company says that they have fixed the breach.

Typeform discovered the breach for the first time on 27 June. “We responded immediately and fixed the source of the breach,” the company said.

The store claimed that no passwords or bank accounts have been leaked. The hackers were able to obtain the name of the customers, their email id, home addresses, contact information, and their social media handles. 

The company added: “No one’s bank details or passwords have been involved, and money and accounts are safe.”

All those who are the victim of this breach have been contacted and adviced to change their passwords. Meanwhile, Fortnum & Mason’s own website or database is intact.

“We have disabled any and all Typeform forms existing on our website and will not work with Typeform until we are assured that; there is no further risk, that all our data has been removed from their servers and that their security measures have been improved,” the department store said. 

“We have been informed that Typeform has fixed the root cause and are undertaking forensic investigations.”

from E Hacking News - Latest Hacker News and IT Security News https://ift.tt/2KDDcpP