Sephora customers' data allegedly being peddled on Dark Web

Singapore-based cyber security firm Group-IB said the Sephora customer records offered for sale on the Dark Web had information such as customers' login details, their date of registration and last activity, as well as gender, full names and ethnicit
Singapore-based cyber security firm Group-IB said the Sephora customer records offered for sale on the Dark Web had information such as customers' login details, their date of registration and last activity, as well as gender, full names and ethnicity. There were also details of hair concerns and skincare routines. ST PHOTO: KUA CHEE SIONG

Cyber security firm says over three million records of customers being offered for sale

More than three million records of customers of international beauty retailer Sephora are allegedly being peddled on the Dark Web, a leading cyber security firm said yesterday.

In response to queries from The Straits Times, Singapore-based Group-IB said the sale involves two databases containing records from February and March this year.

Please or to continue reading the full article. Learn more about ST PREMIUM.

Enjoy unlimited access to ST's best work

  • Exclusive stories and features on multiple devices
  • In-depth analyses and opinion pieces
  • ePaper and award-winning multimedia content
A version of this article appeared in the print edition of The Straits Times on August 02, 2019, with the headline 'Sephora customers' data allegedly being peddled on Dark Web'. Print Edition | Subscribe