CP
cyberpings
BreachesHIGH

Hims & Hers - Customer Support System Hacked in Breach

Featured image for Hims & Hers - Customer Support System Hacked in Breach
TCTechCrunch Security
Hims & Hersdata breachcustomer supportsocial engineeringCalifornia
🎯

Basically, hackers broke into Hims & Hers' support system and stole customer data.

Quick Summary

Hims & Hers revealed a data breach affecting its customer support system, where hackers stole personal information. This incident raises significant concerns about data security in telehealth services. Customers should stay vigilant and monitor their accounts for suspicious activity.

What Happened

Hims & Hers, a prominent telehealth company, recently disclosed that its customer support system was compromised. Hackers accessed the system between February 4 and February 7, stealing sensitive customer support ticket data. This breach was reported in a notice filed with the California attorney general's office.

Who's Affected

While the exact number of affected individuals remains unclear, the breach involves users who interacted with the company's customer support. The stolen data primarily includes customer names and email addresses, along with other personal information that remains unspecified due to redaction in the breach notice.

What Data Was Exposed

The company confirmed that although medical records were not compromised, the nature of customer support tickets means that sensitive information could still be included. This could involve details about users' accounts and personal health inquiries, potentially putting their privacy at risk.

What You Should Do

If you are a customer of Hims & Hers, it is advisable to monitor your email and any communications from the company. Be cautious of phishing attempts that may arise following this breach. Changing your passwords and enabling two-factor authentication can also enhance your security.

The Attack Method

According to Hims & Hers, the breach was a result of a social engineering attack. This type of attack tricks employees into granting unauthorized access to systems, highlighting the importance of employee training in cybersecurity practices.

Industry Context

Customer support systems have increasingly become targets for cybercriminals. Similar incidents have occurred, such as the breach involving Discord, where sensitive user identification documents were exposed. This trend underscores the necessity for robust security measures in handling customer data.

Conclusion

The breach at Hims & Hers serves as a critical reminder for both companies and customers about the vulnerabilities present in customer support systems. As telehealth services continue to grow, ensuring the security of sensitive data must be a top priority.

🔒 Pro insight: This breach highlights the escalating risk of social engineering attacks targeting customer support systems, necessitating enhanced employee training and security protocols.

Original article from

TCTechCrunch Security· Zack Whittaker
Read Full Article

Share

Related Pings

HIGHBreaches

WhatsApp Impostor - Spyware Spreading and Major Breaches

A fake WhatsApp app is spreading spyware, affecting hundreds. Meanwhile, a Texas hospital breach puts 250,000 patients at risk. Cybersecurity remains a pressing concern.

CyberWire Daily·
HIGHBreaches

Hasbro Attack - Weeks Needed for Full Remediation

Hasbro has reported a significant security breach involving unauthorized access. The company is activating its business continuity plans, which may lead to service delays. This incident highlights the ongoing risks in cybersecurity for major brands.

Dark Reading·
HIGHBreaches

API Credentials Exposed - Thousands Found on Public Sites

A recent study uncovered thousands of API credentials exposed on public websites. Major corporations and government entities are affected, risking sensitive data. Immediate action is needed to secure these credentials.

SC Media·
HIGHBreaches

Hasbro Cyberattack - Investigating Possible Data Breach

Hasbro has reported a cyberattack disrupting its operations. The company is investigating the incident and assessing potential data compromise. Stay tuned for updates as they work to resolve the issue.

Security Affairs·
HIGHBreaches

Hasbro Confirms Cyberattack - Weeks-Long Resolution Expected

Hasbro has confirmed a cyberattack affecting its systems, leading to potential operational delays. The company is investigating and implementing continuity plans to mitigate risks.

SC Media·
HIGHBreaches

Duc App Data Exposure - Thousands of Licenses Leaked Online

A data breach involving the Duc App has exposed thousands of driver's licenses and passports to the public. This incident raises serious concerns about data security practices. Users are urged to monitor their information closely and take protective measures.

TechCrunch Security·