CeX data hack hits two million United Kingdom accounts

CeX has broken our run of good fortune, revealing in an email sent out late last night that almost two million customers had had their data leaked in a hack attack. It said there's no indication in-store personal membership information has been compromised.

It's that time again when we reset the imaginary internet sign to read "0 days without a United Kingdom data breach".

Founded in London back in 1992, CeX now has stores across the UK, US, India, Spain, Ireland, Portugal, Netherlands, Mexico, Poland, Australia and Canarias.

But Cex says it stopped storing card data in 2009 and that any bank details stolen by hackers have "long since expired".

In an email sent to customers, the retailer confirmed that names, addresses, email addresses, and phone numbers had been stolen in the breach.

Mexico Responds To Trump's Attacks By Offering Help
Trump on Monday claimed the barrier "will stop much of the drugs pouring into this country and poisoning our youth". Still, Trump said "we may fund it through the USA but ultimately Mexico will be paying for it".

Court sentences Samsung heir to five years prison
Lee has been accused of offering bribes of 38 million United States dollars for various departments after the death of his father. Some reports state some of Samsung's major investment projects may be suspended under the leader's imprisonment.

Ram Rahim verdict: Congress president Sonia Gandhi calls for peace, condemns violence
Tens of thousands of Singh's supporters have gathered outside the courthouse in the town of Panchkula, Haryana , since Thursday. A journalist Ram Chander Chhatrapati had exposed the rapes of two women at Dera headquarters in Sirsa 15 years ago.

Javvad Malik from the security firm Alien Vault told the BBC that it was "surprising" that Cex still stored customer card details "prior to 2009".

Information including names, addresses, email contact details and phone numbers of CeX customers in the United Kingdom who supplied their data in online forms have been accessed in a "sophisticated breach", the company has warned.

"As such, as a precautionary measure, we advise customers to change their password across other services where they may have re-used their WeBuy website password", the retailer said. "Together we have implemented additional advanced measures of security to prevent this from happening again". Being proactive in the matter, CEX says that if you haven't received an email from them specifically talking about recommended steps, then your account is safe. "One would struggle to think of a legitimate business reason for storing expired card details and would appear to go against the Data Protection Act principles of adequacy and relevancy".

"The attack shows, once again, how companies of all sizes need to have a holistic approach to security and the need for a 360-degree visibility into what data is being moved around on and off the network", he added.


Popular

CONNECT