Interestingly, the company says that no personal information like credit card numbers or addresses were taken in the attack. Weee! claims that hackers accessed an Amazon Web Services account used to store customer data, and say they have been working with law enforcement to find those responsible.
Cybercriminals are known for their ability to steal sensitive information from unsuspecting individuals, and this latest attack is no exception. The company has revealed that cybercriminals stole the personal information of customers who placed orders between July 12, 2021 and July 12, 2022. The stolen data includes name, address, email address, phone number and other sensitive information. Cyber criminals could potentially use this data to steal financial assets or even commit fraud by posing as the victim’s legitimate business.
The statement implies that the company does not have access to or store payment information. This could be useful information for customers if they are uncomfortable with the departure of their payment data, or if they would like to have complete control over who has access to this information.
Late last night, information on 11.3 million orders and 1.1 million customer accounts stolen from Weee! earlier in February was made available on a cybercrime forum. Troy Hunt, who runs breach notification site Have I Been Pwned, obtained a copy of the 1.1 million customer email addresses, allowing affected individuals to check if their information was compromised. While it is not yet clear who was behind the breach, it is clear that this is another high-profile data theft which could have significant implications for businesses and their customers.
The seller says that orders placed on the mobile devices of their customers were taken in the breach. This may make it more difficult for hackers to gain access to customer information, since they would not be able to use these devices to place orders.
In February of 2022, Weee! valuation was $4.1 billion and company had more than 1,500 employees. Following a $425 million Series E raise in late 2020, the company is quickly becoming one of the most well-funded startups in the world. With its progressive business model and focus on consumer engagement and product innovation, Weee! looks primed for continued success into the future.
Considering the high-profile and sensitive nature of the Breach, Weee! is likely scrambling to find a solution. Victims and those affected by this data breach may be eligible for a variety of cyber-security remedies, including identity theft protection services.
