Shub Law Firm is investigating Shopify for a recent data breach incident committed by “rogue” employees. On September 22, 2020, Shopify reported that the employees stole customer transactional information from certain businesses, including Thrive Causemetics and Kylie Cosmetics.
Shopify is a popular e-commerce platform that works with more than one million businesses to sell products. Due to social distancing and the pandemic, consumers are turning to online shopping more so now than ever.
THE BUSINESSES IMPACTED BY SHOPIFY DATA BREACH
Reportedly from August 15 to September 15, 2020, two Shopify employees used Shopify Order’s API to access customer information. This API allows businesses to process orders on behalf of their customers. The digital age offers great opportunities for businesses of any size to reach consumers, which is why having credible transactional platforms is so important.
Shopify has not disclosed the number of businesses affected by the data breach, but is notifying businesses “as relevant.” Allegedly, two hundred businesses have been exposed to the data breach. Unfortunately, this type of data breach impacts not just Shopify’s credibility, but the individual businesses as well, whose customers expect their privacy to be protected.
SHOPIFY EMPLOYEES STEALING YOUR INFORMATION
Shopify has not made public how many customer’s private information was stolen. Allegedly, as Shopify reaches out to affected businesses, they are revealing the stolen customer reports. One business claims that more than 4,900 customer records were accessed in the data breach. Stolen customer information may include: first and last names, emails, credit card numbers, addresses, product order information, and BIN numbers.
Shopify claims that only the last four digits of credit cards were stolen, but numerous customers claim online that they received fraudulent purchases on their cards during the reported time frame. Even without credit card information stolen, the other stolen information can lead to phishing scams committed by hackers. Shopify has fired the “rogue” employees and reported the incident to law enforcement, but what is being done to defend the invasion of the consumer’s privacy?
CONTACT US IF YOU HAVE BEEN AFFECTED BY THIS DATA BREACH
With retailers moving online we need to trust that our information will be protected. If you or someone you know believes you may have been affected by the Shopify data breach, please contact us via email at firstname.lastname@example.org or give us a call at 856-772-7200. At Shub Law, our attorneys specialize in representing consumers who are victims of a cybersecurity data breach. Shub Law Firm is a national leader in representing people, just like you, against some of the nation’s largest companies. Our experienced class action attorneys are here to help you get justice. Contact us now! All consultations are free of charge.