DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Ouidad notifies customers after customer data viewed or obtained

Posted on October 18, 2013 by Dissent

Hair care product manufacturer and e-tailer Ouidad is notifying customers that they were recently alerted to a compromise of their customer database that occurred between June 30 and July 4.

In a letter to those affected, they write:

 It appears the attackers obtained or viewed information about one or more transactions you completed at Ouidad.com including your first and last name, credit card number, credit card security code and expiration date, billing address, email address, [user name, password,] and phone number.

Ouidad reset passwords for those whose passwords were involved, and has offered those affected a free one-year membership in the Equifax Credit Watch Gold with Web Detect identity theft protection monitoring program.

According to their submission to the California Attorney General’s Office, they learned of the breach on September 20, but they do not indicate in their letter who alerted them to the problem and whether the initial alert was a report of credit card fraud. In fact, their letter is totally silent on the question of whether they are aware of any fraudulent use of customer information.

Update: 559 residents of New Hampshire were also notified of this breach.

No related posts.

Category: Business SectorHackU.S.

Post navigation

← French Data Protection Authority CNIL Announces New Online Notification Procedure For Reporting Data Breaches
Privacy breach at Northern Inyo Hospital could result in criminal charges →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Meta fixes bug that could leak users’ AI prompts and generated content
  • Mississippi Law Firm Sues Cyber Insurer Over Coverage for Scam
  • Ukrainian Hackers Wipe 47TB of Data from Top Russian Military Drone Supplier
  • Computer Whiz Gets Suspended Sentence over 2019 Revenue Agency Data Breach
  • Ministry of Defence data breach timeline
  • Hackers Can Remotely Trigger the Brakes on American Trains and the Problem Has Been Ignored for Years
  • Ransomware in Italy, strike at the Diskstation gang: hacker group leader arrested in Milan
  • A year after cyber attack, Columbus could invest $23M in cybersecurity upgrades
  • Gravity Forms Breach Hits 1M WordPress Sites
  • Stormous claims to have protected health info on 600,000 patients of North Country Healthcare. The patient data appears fake. (2)

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Fourth Circuit upholds West Virginia ban on abortion pills
  • Meta fixes bug that could leak users’ AI prompts and generated content
  • The EU’s Plan To Ban Private Messaging Could Have a Global Impact (Plus: What To Do About It)
  • A Balancing Act: Privacy Issues And Responding to A Federal Subpoena Investigating Transgender Care
  • Here’s What a Reproductive Police State Looks Like
  • Meta investors, Zuckerberg to square off at $8 billion trial over alleged privacy violations
  • Australian law is now clearer about clinicians’ discretion to tell our patients’ relatives about their genetic risk

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.