On April 12, Ins user Estée Laundry revealed Shiseido’s UK branch’s disclosure of employee information. Some employees and former employees have accused the company of failing to notify the affected employees of the information disclosure.
It was discovered that the personal information of hundreds of former and current employees of the company had been leaked, including details such as address, passport, ID card, and bank account. This has not only had a negative impact on their lives, but it has also resulted in property losses for some (former) employees.
According to Estée Laundry’s “testimony,” the victims’ personal information was stolen and used to set up companies, withdraw bank deposits, obtain bank loans, and conduct fraud business.
A former Shiseido branch employee revealed to Estée Laundry that someone had set up a bogus company in his name. He discovered that his information had been stolen in March of this year and “was forced to pay legal fees to remove himself from the company.”
At the time of writing, several former employees of the company stated at the bottom of Estée Laundry’s post that the information disclosure was true, and some employees who had worked in other Shiseido regional branches expressed concern about the security of their personal information. Some netizens even started calling for a boycott of Shiseido, the parent company of NARS and drunk elephant, in the comments.
If these allegations are true, Shiseido will have made its second large-scale information disclosure in six years. According to reports, the online mall operated by IPSA, a Shiseido company, was hacked in November 2016. The invasion resulted in the theft of nearly 420000 users’ personal information and data, including names, addresses, and financial information.
With the rapid development of big data, cloud computing, and other technologies, the network not only brings convenience to consumers, but it also brings hidden dangers such as illegal data collection and disclosure.
There haven’t been many enterprises or brands in recent years that have faced a trust crisis as In July 2020, it was revealed that Avon, a well-known direct selling cosmetics brand under natura & Co, had leaked 19 million records due to cloud server configuration errors, including personal identity information of customers and employees such as full name, phone number, birthday, email, home address, and GPS coordinates.
According to security researcher Jeremiah Fowler, Estée Laundry’s official server was hacked in February of the same year, resulting in the disclosure of more than 400 million pieces of data, including important privacy information such as users’ email addresses. Fortunately, the data breach did not involve any user payment information or sensitive employee information.
Sephora sent an email to users in Southeast Asia in July 2019, stating that unauthorized third-party institutions had repeatedly illegally accessed the system in order to steal consumers’ account information, including name, birthday, gender, email address, password, and beauty. However, the stolen data does not include credit card or payment information. According to media reports, the information disclosure involved approximately 3.7 million users.
Threats from cyber attacks have increased in recent years. Extortion software has increased by 232 percent since 2019, according to the SonicWALL 2022 cyber threat report. The common goal of cloud service providers and enterprise users is to ensure data and application security in the cloud environment. Enterprise data should be protected, especially virtual machine backup should be emphasized.
Vinchin is a professional provider of data protection solutions for enterprises. It provides a series of data backup, instant recovery, and offsite DR solutions for private cloud, public cloud and hybrid cloud environments. Vinchin backup solutions have been successfully deployed and delivered in 60+ countries and widely used in 20+ industries such as governments, telecommunications, health care, education, finance, IT services, manufacture, military industry, etc. from SMBs to large-scale enterprises and state-owned enterprises. Vinchin provids VMware backup, Hyper-V backup, XenServer/Citrix Hypervisor Backup, oVirt backup, XCP-ng Backup, Red Hat Virtualization Backup, and more.