THE WHAT? Clarins has released a statement concerning a data security incident that may affect its Singaporean customers, according to a report published by The Singapore Time.
THE DETAILS The French cosmetics brand has been affected by a critical vulnerability in Log4j software, which it uses to manage a database of its Singaporean customers.
Personal information, including names, addresses, telephone numbers and data on the Clarins loyalty program could have been viewed but passwords, credit card information and payments processed appeared to be secure.
THE WHY? The company said in a statement posted on its website, per The Singapore Time, “Unfortunately, while this vulnerability affecting our database was quickly patched within hours of the release of the security patch, it appears the server was compromised after the vulnerability was publicly exposed.”