Data leak. The store warns customers

ByValeska
Biżuteria Ania Kruk

ANIA KRUK Sp. z o. o. informed its customers that there was a leak of personal data from the online store www.aniakruk.pl. Unauthorized persons received information such as the customer’s name, surname, telephone number, e-mail address, date of birth and encrypted password.

The jewelry selling brand Ania Kruk informed about the breach of personal data of customers who placed orders in the online store aniakruk.pl.

Leak of customer data Ania Kruk

What happened? On October 2, 2024, the company operating the sales platform realized that there was a leak: an unauthorized entity came into possession of a fragment of the customer’s personal database, which includes name, surname, telephone number, e-mail address, date of birth, and encrypted password.

“We have no reason to suspect that your account passwords have been decrypted. The information obtained from our technology partner indicates a personal data protection breach involving five customers, but we must assume that an unauthorized person could have gained access to the data of more people,” they read in the statement.

The company also said it had not learned of any negative consequences or further violations. “When the breach was detected, we took all possible steps to secure the data. What steps have we taken to secure your data?

1.We have blocked access to the database, eliminating any further threats of data leakage
2. We have informed the Personal Data Protection Office
3. We conducted an audit of events and access to the database
4. We have scanned the infrastructure for existing gaps and are implementing additional organizational measures regarding the functioning of the principles of personal data processing,” we read in the announcement.

Data leak – what next?

What can information capture mean for customers? The company warns that they may encounter the following situations due to the incident:

  • Attempts to send unsolicited marketing materials (so-called spam) to your e-mail address or telephone number,

  • Phishing attempts, i.e. contacts from unknown companies and people trying to extort additional data,

  • Attempts to complete the rest of your data through suspicious telephone calls or e-mails.

The company recommends taking the following steps:

  1. “Be especially careful with suspicious e-mails and SMS messages, especially those containing links or requests for additional data, and do not activate the links sent.

  2. Avoiding providing information about yourself during telephone conversations and in response to e-mails.

  3. Monitor your online accounts for unauthorized activity.

  4. We recommend changing the security passwords for your online accounts, including the www.aniakruk.pl store.

If you have additional questions or would like to seek help in connection with the situation, customers may contact the personal data inspector at the following e-mail address: (email protected). “We apologize for the situation and any inconvenience caused by the incident. We assure you that we are taking all steps to prevent this type of situation in the future,” the company promises.

Similar Posts