'Financial data not compromised,' says Goldheart after leak affects over 40,000 customers

share on

twitter /
facebook /
linkedin /
- email
- telegram
- whatsapp
- wechat
- pinterest
- line
- snapchat
- reddit

The personal information of over 40,000 customers at jewelry company Goldheart has been compromised after a hacker targeted its e-commerce website, as confirmed by Goldheart to MARKETING-INTERACTIVE in a statement.

It noted that on 24 May, it discovered that its e-commerce website had been compromised due to illegal access. "Our dedicated team immediately launched a thorough investigation and discovered that personal information of close to 42,000 customers had been compromised," it said before noting that it can confirm from its investigation that personal information from November 2022 onwards was not compromised.

"We took immediate steps to mitigate any further illegal access by suspending our e-commerce website, securing our systems, and working with cyber security experts and relevant authorities," it continued. "Our top priority is to protect the data of our customers and prevent any further unauthorised access."

Don't miss: 14,000 Mediacorp meconnect accounts compromised in data breach

Goldheart noted that forensic analysis has, to date, identified that personal data was compromised due to illegal and suspicious activities from an external party who targeted its e-commerce website. It also found that the unauthorised access was solely limited to the affected data containing names, addresses, email addresses, dates of birth and phone numbers.

"We have notified the Personal Data Protection Commissioner and have reported the incident to the police. All affected customers have also been notified of the incident," it said.

"We can confirm that no other data has been compromised. In particular, financial data such as credit card information or passwords have not been accessed or retrieved by hackers." It continued by saying that due to the nature of the compromised data, it believes there is limited risk of fraudulent activity for those affected. "That said, we have asked all affected customers to take all necessary precautions, including ensuring that emails received are from legitimate senders and to review email links carefully."

"We take this incident very seriously and are collaborating closely with the authorities. We would like to emphasise our commitment in protecting personal data in the course of our business operations and are diligently enhancing our security measures as well as implementing further safeguards to prevent similar incidents in the future," said Goldheart.

share on