Saturday, February 22, 2025
HomeCyber AttackCyber Attack Hits SHEIN Fashion Retailer, More Than Affected 6.42 Million Customers

Cyber Attack Hits SHEIN Fashion Retailer, More Than Affected 6.42 Million Customers

Published on

SIEM as a Service

Follow Us on Google News

SHEIN fashion retailer suffered a major data breach, personal details of more than 6.42 million customers stolen by attackers. SHEIN fashion is an US-based online shopping platform that produces fashion clothing.

The company says ‘On August 22 aware that personally identifiable information of its customers was stolen during a sophisticated criminal cyber attack on its computer network.”

Once SHEIN aware of cyberattack they called a forensic cybersecurity firm for investigation of the data theft.

The investigation confirms that attackers gained access to email addresses and encrypted password credentials of customers who registered on the company website.

The cyber attack impacted more than 6.42 million and the investigation is still in progress. SHEIN said, “we continue to closely monitor the network and servers so future breaches can be prevented.”

Also, SHEIN confirms that credit card details are not affected by the breach as they are not storing any credit card information on the systems.

SHEIN in process of notifying authorities and the customers affected in the breach, they request all the customers to reset their passwords by clicking the link on the email notification from SHEIN or logging into their account.

Here you can see the most common Top ten list of common Dark Web activities that organizations should watch on the dark web that indicate a possible data breach.

Related Read

Best ways to Lock Down the Highly Sensitive Data From the Massive Breaches

Hackers Uploaded 42M Record that Contains Email Address and Credit Card Data to Free Anonymous Hosting Service

Huge E-marketing Database that Contains 11 Million Sensitive Personal Records Exposed Online

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

SPAWNCHIMERA Malware Exploits Ivanti Buffer Overflow Vulnerability by Applying a Critical Fix

In a recent development, the SPAWNCHIMERA malware family has been identified exploiting the buffer...

Sitevision Auto-Generated Password Vulnerability Lets Hackers Steal Signing Key

A significant vulnerability in Sitevision CMS, versions 10.3.1 and earlier, has been identified, allowing...

NSA Allegedly Hacked Northwestern Polytechnical University, China Claims

Chinese cybersecurity entities have accused the U.S. National Security Agency (NSA) of orchestrating a...

ACRStealer Malware Abuses Google Docs as C2 to Steal Login Credentials

The ACRStealer malware, an infostealer disguised as illegal software such as cracks and keygens,...

Supply Chain Attack Prevention

Free Webinar - Supply Chain Attack Prevention

Recent attacks like Polyfill[.]io show how compromised third-party components become backdoors for hackers. PCI DSS 4.0’s Requirement 6.4.3 mandates stricter browser script controls, while Requirement 12.8 focuses on securing third-party providers.

Join Vivekanand Gopalan (VP of Products – Indusface) and Phani Deepak Akella (VP of Marketing – Indusface) as they break down these compliance requirements and share strategies to protect your applications from supply chain attacks.

Discussion points

Meeting PCI DSS 4.0 mandates.
Blocking malicious components and unauthorized JavaScript execution.
PIdentifying attack surfaces from third-party dependencies.
Preventing man-in-the-browser attacks with proactive monitoring.

More like this

SPAWNCHIMERA Malware Exploits Ivanti Buffer Overflow Vulnerability by Applying a Critical Fix

In a recent development, the SPAWNCHIMERA malware family has been identified exploiting the buffer...

Sitevision Auto-Generated Password Vulnerability Lets Hackers Steal Signing Key

A significant vulnerability in Sitevision CMS, versions 10.3.1 and earlier, has been identified, allowing...

NSA Allegedly Hacked Northwestern Polytechnical University, China Claims

Chinese cybersecurity entities have accused the U.S. National Security Agency (NSA) of orchestrating a...