OFFICE customers' personal details compromised

High street shoe retailer OFFICE is the latest company to reveal that its customers' names, addresses, phone numbers, email addresses and passwords were accessed in a "security breach".

No financial details were accessed, the retailer said in an email sent to its customers. Only accounts made before August 2013 were breached, it said.

The attack has been reported to the police and the email to customers offered assurance that the retailer had taken necessary measures to secure customer information. OFFICE told its customers to change security settings on other accounts that used the same password, as their personal details could be linked.

This is the latest in a series of high profile data breaches revealed this week including eBay and Spotify.

Last month children's shoe retailer Start-Rite and Mumsnet announced to their users that their websites had been affected by the Heartbleed bug - an open SSL vulnerability.

Brian McCluskey, OFFICE's chief executive said: "I can confirm that the OFFICE website has been the subject of a security breach. We take such a threat very seriously and have been in communication with our customers to advise them of the matter. We can confirm that no credit card, debit card, Paypal or bank details were compromised in any way. In addition we have reported the matter to the relevant authorities.

"The protection of customer data is of the utmost importance to us and we are treating this extremely seriously. Our customers remain our number one priority and we are taking all necessary measures to ensure that our website remains secure."

This story, "OFFICE customers' personal details compromised" was originally published by Computerworld UK.

To comment on this article and other CSO content, visit our Facebook page or our Twitter stream.
Healthcare records for sale on Dark Web