Lookiero, an online personal styling service, has fallen victim to a significant data breach that compromised the personal information of nearly 5 million users. The breach, which occurred in March 2024, has resulted in the exposure of a substantial amount of user data. The stolen data was subsequently posted on a popular hacking forum in August 2024, further escalating the potential risks for affected individuals.
Data leak details
The breach was first publicly disclosed when the compromised data was posted on the Breached forums on August 20, 2024. The threat actor, operating under the alias “KryptonZambie,” claimed to have acquired over 5 million records from Lookiero's database. The leaked data, which was offered as a downloadable .csv file sized at 4.11 GB, contained a variety of sensitive information, including usernames, encrypted passwords, physical addresses, and payment-related data such as credit card details and Facebook access tokens. The forum post also provided a sample of the data as proof of the claims made.
CyberInsider
Lookiero, based in Spain, is a popular online platform that offers personalized fashion styling services primarily for women. Customers provide information about their style preferences, and Lookiero's team of stylists curates a selection of clothing items tailored to individual tastes, which are then delivered directly to their doorsteps. With millions of users across Europe, Lookiero has become a prominent player in the online fashion industry, making the scale of this breach particularly concerning.
When contacted regarding the breach from Have I Been Pwned (HIBP), Lookiero provided a brief and somewhat vague response, stating that they would “look into it and get back to you if necessary.” This response has drawn criticism from security experts and customers alike, as it suggests a lack of urgency in addressing the incident. As of now, Lookiero has not provided further updates or disclosed any specific actions taken to mitigate the effects of the breach or protect affected users.
The compromised data was shared with the HIBP data breach notification service, by a source who requested to be identified as “oathnet.ru.” HIBP has since added the breach to its database, allowing users to check if their information was included in the leak. According to HIBP, the breach involved approximately 4,981,760 unique email addresses, alongside other personal information. HIBP stated that 29% of those addresses were not previously in HIBP.
Recommendations
Given the nature and scope of the data exposed, it is crucial for Lookiero users to take immediate steps to protect themselves:
- Regularly check your email and financial accounts for any suspicious activity. Report any unauthorized transactions or changes to your bank or service provider immediately.
- If you have reused your Lookiero password on other sites, change those passwords immediately. Use strong, unique passwords for each online service to minimize the risk of further breaches.
- Cybercriminals may use the stolen information to craft convincing phishing emails. Be cautious of any unsolicited emails, particularly those requesting personal information or containing links to unfamiliar websites.
- Where possible, enable 2FA on your online accounts to add an extra layer of security. This can help prevent unauthorized access even if your password is compromised.
Dell Warns of Dangerous BIOS Flaw in Multiple Alienware Laptops
I emailed Lookiero and they responded as follows:
Hello Alicia,
Thank you for contacting us. We understand your concern and want to clarify the situation. Incorrect information is being circulated.
We have detected an unauthorised access to a database in our test environment. We want you to know that the compromised data does not include sensitive information such as passwords or payment details.
Also, as this is a test environment, some of the data may not be up to date or may not exactly match your actual account information.
We know that this type of situation can be a cause for concern, so we would also like to share with you some tips on how to protect yourself against possible phishing attempts:
Don’t click on suspicious links.
Always check that the emails you receive come from official addresses.
Change your passwords regularly to prevent them from being vulnerable.
Activate two-step authentication to add an extra layer of security to your personal accounts outside of Lookiero.
We apologize for any inconvenience caused.
If you still wish to cancel your account, please reply to this email and we will do the necessary.
Please do not hesitate to contact us if you have any further questions.
Best regards,
[Name]