The second-hand electronics retailer CeX has suffered a massive “online security breach” compromising the personal data and passwords of up to two million customers, according to reports surfacing this morning.
Passwords and personal data like customer names, addresses and phone numbers were compromised in the attack that saw “an unauthorised third party” illegally access CeX computer systems.
The company has urged customers to change their password, especially if they reused their Cex password on other websites.
>See also: The world’s biggest data hacks revealed
Cex has hundreds of stores worldwide, and more than 300 stores in the UK. At these stores, people can trade in gadgets and video games, and it operates the webuy.com online marketplace.
In a statement, Cex said it had employed a cyber-security specialist to review its systems, to prevent a “sophisticated breach” from happening again, while the company is also working with the police.
“With online retailers in possession of a wealth of personal customer data, it is no surprise that hackers are increasingly targeting them as they struggle to keep up with patching vulnerabilities,” explained Paul Cant, VP EMEA, BMC Software:
“It is therefore critically important and overdue that enterprises have a strategy in place to enable SecOps teams to quickly identify the vulnerability and its threat to their system, prioritise it against other threats and fix it – fast – thus preventing a serious breach like this before it happens.”
The UK’s largest conference for tech leadership, TechLeaders Summit, returns on 14 September with 40+ top execs signed up to speak about the challenges and opportunities surrounding the most disruptive innovations facing the enterprise today. Secure your place at this prestigious summit by registering here