Sankei, a major company in Japan, recently disclosed a data breach affecting its former e-commerce website. The breach, which was caused by a vulnerability allowing unauthorized access, compromised sensitive information from approximately 71,943 customers. The exposed data includes credit card details, names, addresses, and encrypted login credentials. This security incident highlights the risks associated with long-running, outdated systems, particularly in the online retail sector.
The breach occurred over a lengthy period, from December 27, 2019, to May 15, 2024, during which time unauthorized parties accessed transaction data. Sankei shut down its old e-commerce site on May 15, 2024, and implemented a new system to bolster its security measures. Despite the closure of the affected website, the company has been working tirelessly to investigate the scope of the breach and mitigate further risks.
The exposed data has raised concerns over the potential misuse of stolen credit card information. Sankei’s investigation revealed that some of the stolen credit card details were, in fact, misused. This underscores the severity of the attack and the long-term implications such breaches can have on consumers. Customers whose data was compromised could face identity theft, financial fraud, and other forms of exploitation.
In response to the breach, Sankei has been taking steps to notify affected customers and offer assistance. While the company has not disclosed specific details regarding the measures taken, it is clear that they are working diligently to ensure the security of their new platform. Sankei’s breach serves as a reminder of the importance of continually updating security systems and implementing robust protective measures to safeguard customer data in today’s increasingly digital world.
Reference:
