Monday 17 August 2020, Poradnik bezpieczeństwa

Avon data leak

Lost24

There was a data breach from Avon Products, 19 million customer data records fell into the wrong hands.
As a result of the attack, some of the IT systems were disabled and company’s operations were disrupted.


Despite Avon’s reassuring announcements that credit card information should not be in possession of the cybercriminals, experts from SafetyDetectives believe that this is not the end of the company’s problems.
According to the AVLab, which cites SafetyDEtectives, the leak contained multiple logs that can be used to attack Avon Products customers and its IT infrastructure. The database contained personal and technical information, including: customer names and surnames with phone numbers, dates of birth, addresses of residence, email addresses, GPS coordinates, security tokens, internal logs, account settings and server information.


It is clear that the stolen data can be used for all sorts of identity fraud. According to the AVLab, the stolen data can be used to take full control of Avon’s servers.