Guess, the US-based fashion brand and retailer, was the victim of a data breach, according to a report by Bleeping Computer on Monday, July 12.
Guess, which operates 1,041 stores in the Americas, Europe and Asia, said there was unauthorized access to its system between February 2, 2021 and February 23, 2021.
“On May 26, 2021, the investigation determined that personal information relating to certain individuals may have been viewed or acquired by an unauthorized actor.”
The fashion retailer had been able to identify all affected addresses as of June 3. He started sending emails to affected users with free identity theft protection services shortly after, through the Experian service. Information exposed in the attack included personal and financial information and affected approximately 1,300 people, according to information filed with the Maine attorney general.
“The investigation determined that social security numbers, driver’s license numbers, passport numbers and / or financial account numbers may have been viewed or acquired,” the company said, according to Bleeping Computer. The Bleeping Computer report added that the stolen information also included the “financial account number or credit / debit card number (in combination with the security code, passcode, password or PIN) Account)”.
According to Guess, the company has since implemented new security measures. He is also working with the police on the ongoing investigation.
PYMNTS has reported on the increasingly prolific fraud and high-tech attacks like ransomware that have mostly occurred since the pandemic. Fraudsters have jumped on the pandemic due to the rapid digital switchover and the confusing and chaotic transition that follows, leaving spaces open for criminals.
This includes what was recently reported as the biggest ransomware attack ever, which affected around 800 to 1,500 small businesses. The breach occurred at B2B software company Kaseya. The breach spread to Kaseya’s customers, who were so numerous that the company struggled to discern the impact of the attack.