A cybersecurity vendor claimed last month that hackers stole data containing the personal information of millions of customers from fashion retailer Hot Topic. At that time, there was no confirmation from the retailer itself. However, the breach notification site has confirmed that the personal data of 56,904,909 users was found online and leaked from Hot Topic, Torrid, and Box Lunch customers.
This data includes email address, physical address, phone number, purchase history, gender, and date of birth. Some credit card data was also included in the breach.
We're giving away a $500 gift card this holiday season.
Please enter by sign up For my free newsletter.
image of people shopping (Kurt “Cyber Guy” Knutson)
What you need to know
Infringement notification service Have you ever been there? acquired (HIBP) announced this week that it had alerted 56 million Hot Topic customers to a data breach in which their personal information was compromised. Hot Topic, which operates more than 640 stores across the United States, has not yet confirmed the breach, but HIBP reported that the breach occurred on October 19th. Just two days later, an attacker using the alias “Satanic” claimed responsibility.
Satanic claims that the database contains details of 350 million users, but that number appears to have been inflated. However, the leaked data includes names, email addresses, addresses, and dates of birth. All information collected through Hot Topic's loyalty program. The hackers are offering the database for $20,000 and demanding that Hot Topic pay $100,000 to prevent its sale.
hudson rockan Israeli cybersecurity company, was the first to report the breach and believes it to be credible. The company traced the issue to a malware infection on the computers of employees of Robling, a third-party retail analytics company. Hudson Rock, whose cyber intelligence platform Cavalier monitors compromised devices, discovered the infection and reported it to clients.
The attackers likely used the credentials stolen by the information-stealing malware to gain access to the analytics platform used by Hot Topic, allowing them to penetrate the retailer's cloud environment.
Illustration of a hacker at work (Kurt “Cyber Guy” Knutson)
A flaw in Windows could allow hackers to break into your PC via Wi-Fi
Hot Topic's silence after the breach is questionable
Evidence of a data breach at Hot Topic continues to mount, but the company has yet to announce anything. Neither the customer nor the state attorney general was notified. Hot Topic's silence could mean several things, especially in the case of such a massive breach. They are still investigating and may be working with cybersecurity experts to confirm what happened and understand the extent of the damage. Companies may remain silent, hoping to delay or avoid bad publicity. However, this strategy could backfire and invite greater scrutiny and skepticism.
We reached out to Hot Topic for comment on this article but did not hear back by deadline.
Illustration of a hacker at work (Kurt “Cyber Guy” Knutson)
Cyber crooks use AI to manipulate Google search results
5 ways to stay safe in the event of a data breach
1) Maintain strong passwords. Hot Topic data breach exposed sensitive information, so it's essential to update your passwords. Use strong, unique passwords for each account, especially for services where personal information is stored. Combining letters, numbers, and symbols makes it harder for hackers to guess. Please consider using . password manager Keep everything safe and easily accessible.
2) Beware of suspicious links: Phishing attempts will increase after a breach, and hackers may use leaked emails to send fake links and emails. Avoid clicking on suspicious links, especially those that request personal information. Always double-check the sender's email and watch for strange wording or urgent requests. If in doubt, go directly to the website instead of following the link in the message.
The best way to protect yourself from malicious links that can install malware and access your personal information is to install antivirus software on all your devices. This protection also warns you about phishing emails and ransomware scams, keeping your personal information and digital assets safe. Get my picks for the best antivirus protection products of 2024 for Windows, Mac, Android, and iOS devices.
3) Invest in a data deletion service. We recommend investing in a data deletion service, as your personal information may end up on the dark web or public databases. Check out my recommended data deletion services here.
4) Be aware of the risk of identity theft. The leaked data includes sensitive information such as addresses, birthdays, and purchase history, which could be used for identity theft. Please be especially careful when sharing personal information in the future, and report immediately if you notice anything unusual. If you use Hot Topic, you may also want to consider our identity theft monitoring service. Check out our tips and recommendations on how to protect yourself from identity theft..
5) Monitor your account regularly. Keep an eye on bank accounts, credit card statements, and even loyalty programs where your information is stored. Set up transaction and login alerts so you can take immediate action if you suspect something is wrong. Regular monitoring allows you to detect fraud early and minimize the damage if your data is misused.
Prevent people nearby from hearing your voicemails with this simple tip
Cart important points
The Hot Topic data breach is particularly alarming as it affects over 56 million people. What makes the situation even more worrying is that Hot Topic has remained silent on the matter. The company has not notified those affected, leaving many unprepared for potential cybersecurity threats. Hackers can take advantage of this opportunity to target victims and defraud them, which can lead to financial losses. This situation is a strong reminder of the importance of maintaining good cybersecurity hygiene, whether or not you've been affected by a breach.
Should companies be forced to compensate customers whose data has been breached, rather than just staying silent? Email us at. Cyberguy.com/Contact.
CLICK HERE TO GET THE FOX NEWS APP
For more of my tech tips and security alerts, subscribe to my free CyberGuy Report newsletter using the link below. Cyberguy.com/Newsletter.
Ask your cart a question or let us know your story you'd like us to feature.
Follow Kurt on his social channels.
Answers to CyberGuy frequently asked questions:
New from cart:
Copyright 2024 CyberGuy.com. Unauthorized reproduction is prohibited.
