Friday in CE: CeX Hack Put 2 Million Customers’ Personal Data at Risk
A secondhand electronics retailer in the U.K. said this week that it suffered a massive online security breach that compromised the personal data of some two million customers. CeX said that everything from passwords, customers’ names, physical addresses, email addresses, and phone numbers were exposed in an attack conducted by “an unauthorized third party” that illegally accessed the company’s computer systems.
In a statement, CeX said that other payment information was part of the breach, but it only included data stored from 2009 and earlier—meaning any cards used at that time would be expired by now. CeX also said that it was advising its customers to change their passwords on their webuy.com accounts to help protect themselves from any future financial harm.
“We take the protection of customer data extremely seriously and have always had a robust security programm in place which we continually reviewed and updated to meet the latest online threats,” the statement read. “Clearly however, additional measures were required to prevent such a sophisticated breach occurring and we have therefore employed a cyber security specialist to review our processes. Together we have implemented additional advanced measures of security to prevent this from happening again.