More than 1,600 customers’ names, genders, mailing addresses and e-mail addresses were compromised.
Following a recent Cyber War News report alleging that a hacker called @D0ct0r_Inj3ct0r had stolen customer data from Twinings, the company has now confirmed the breach.
“The attack is on the Twinings USA website (www.twiningsusa.com) and contains very basic database information as well as 1,600+ consumer credentials such as full names, address, genders and emails,” the Cyber War News article stated. “Attacks like this show how important the need for greater security across many different sized and typed Web sites and Web services as each day that goes on more and more is dependant by them.”
In a recent e-mail to customers, Dan Martin, president of Twinings North America, wrote, “We have been notified that some personal information (name, email address, physical address, date of birth, and gender), typically submitted when subscribing to our Tea-Mails or promotions, may have been compromised by a third party. Please rest assured that NO financial information of any kind has been compromised, and this information continues to be protected under the strictest security measures.”
“Martin claims the company has started implementing enhanced security mechanisms to ensure that their customers’ details are better protected.,” writes Softpedia’s Eduard Kovacs. “He has also warned users to be careful in case they receive any suspicious emails in which they’re requested to hand over personal or financial information.”