A new week, a new attack. After France Work And mutual insurance managersit’s the turn of a new French company to take over: Le Slip français.
“Following an act of computer malware of which we were victims, […] some of our customers’ personal data has unfortunately been stolen by hackers.» In a laconic press release published on its site, the ready-to-wear specialist “Le Slip Français” informed its customers that some of their information was undoubtedly wandering around in the wild.
No credit card details or password
Without explaining exactly the nature of the attack, the company explains that it became aware of fraudulent access to its database which allegedly occurred around April 15. Anxious to reassure its customers, the firm nevertheless specifies that “no information regarding passwords […] nor payment card data are affected by this incident“. The attack wascircumscribed» and a complaint was filed, as well as a report to the CNIL, as required by law.
Customers of the platform also received a slightly more complete email explaining that the “names, first names, telephone numbers, as well as your postal address and email address» are affected by this hack. In some cases, “an order number» as well as its linked amount were also stolen by the hackers. Even people who are normally unsubscribed from the database are “likely to be affected by this malicious act», Indicates the company. Enough to raise an eyebrow or two on the side of the CNIL, data of this type being supposed to be deleted at the user’s request.
1.5 million email addresses?
If the company does not detail the number of customers and ex-customers affected by this leak, on a forum specializing in the resale of personal data, an announcement mentions a database containing 696,144 customer files and 1,506,395 email addresses. The veracity of all the information contained in this database could not be verified, but certain order numbers coupled with the email addresses contained in the file do indeed appear to provide customer data on the site’s return form.
As usual with this type of leak, the most important thing to do is to remain alert to the phishing attempts that such a hack could motivate. If you receive suspicious emails from the company in the next few days, take a good look at the URL to make sure you don’t end up on a site designed to scam you.
Source : The French Brief
5