'Financial data not compromised,' says Goldheart after leak affects over 40,000 customers
share on
The personal information of over 40,000 customers at jewelry company Goldheart has been compromised after a hacker targeted its e-commerce website, as confirmed by Goldheart to MARKETING-INTERACTIVE in a statement.
It noted that on 24 May, it discovered that its e-commerce website had been compromised due to illegal access. "Our dedicated team immediately launched a thorough investigation and discovered that personal information of close to 42,000 customers had been compromised," it said before noting that it can confirm from its investigation that personal information from November 2022 onwards was not compromised.
"We took immediate steps to mitigate any further illegal access by suspending our e-commerce website, securing our systems, and working with cyber security experts and relevant authorities," it continued. "Our top priority is to protect the data of our customers and prevent any further unauthorised access."
Don't miss: 14,000 Mediacorp meconnect accounts compromised in data breach
Goldheart noted that forensic analysis has, to date, identified that personal data was compromised due to illegal and suspicious activities from an external party who targeted its e-commerce website. It also found that the unauthorised access was solely limited to the affected data containing names, addresses, email addresses, dates of birth and phone numbers.
"We have notified the Personal Data Protection Commissioner and have reported the incident to the police. All affected customers have also been notified of the incident," it said.
"We can confirm that no other data has been compromised. In particular, financial data such as credit card information or passwords have not been accessed or retrieved by hackers." It continued by saying that due to the nature of the compromised data, it believes there is limited risk of fraudulent activity for those affected. "That said, we have asked all affected customers to take all necessary precautions, including ensuring that emails received are from legitimate senders and to review email links carefully."
"We take this incident very seriously and are collaborating closely with the authorities. We would like to emphasise our commitment in protecting personal data in the course of our business operations and are diligently enhancing our security measures as well as implementing further safeguards to prevent similar incidents in the future," said Goldheart.
Related articles:
RedMart slapped with SG$72,000 for data breach
Carousell confirms data breach, 1.95m accounts reportedly impacted
Starbucks SG involved in data breach
share on
Free newsletter
Get the daily lowdown on Asia's top marketing stories.
We break down the big and messy topics of the day so you're updated on the most important developments in Asia's marketing development – for free.
subscribe now open in new window