14 DAY TRIAL // A number of 5,000 individuals became exposed to malicious schemes after a hacker managed to breach United Beauty, an online cosmetics store, leaking valuable information from their database.
P0keu leaked email addresses and clear-text password after relying on a vulnerability found on the site’s product purchase page.
“Delivering ya'll with freshly extracted data. Plain text and all, what do you say? Thank joo,” the hacker wrote on Pastebin.
Fortunately, customer credit card information must have been stored somewhere else in a more secure place, but of course there’s also the chance that the hacker kept that data for himself. I would imagine that 5,000 credit card record sets would worth a lot on the underground market.
Since the website didn’t contain any warning messages to their customers, I’ve contacted United Beauty to learn if they’re aware of the hack and to see if they’ve taken any measures to secure their online assets.