×
980
Fashion Jobs
TJX CORPORATE
Business Planning Analyst
CDI · Mississauga
L'OREAL GROUP
Amazon Account Manager - Consumer Goods Division
CDI · Toronto
ESTÉE LAUDER COMPANIES
Project Manager
CDI · MARKHAM
ESTÉE LAUDER COMPANIES
Indirect Procurement Manager - Canada Lead
CDI · Markham
TJX CORPORATE
Buyer
CDI · Mississauga
NORDSTROM CANADA RETAIL INC
Loss Prevention Security Ambassador Vaughan Mills Rack
CDI · Vaughan
L'OREAL GROUP
Analyste Contrôle Qualité (Contractuel)
CDI · MONTREAL
TJX CORPORATE
District Loss Prevention Manager, London
CDI · London
TJX CORPORATE
Loss Prevention Store Investigator - Oakville
CDI · Oakville
NORDSTROM
Loss Prevention Security Ambassador Eaton Centre
CDI · Toronto
PVH
Human Resources Business Partner (1-Year Contract)
CDI · Montreal
CLINIQUE
Associate Consultant - Clinique - Regina, sk
CDI · Regina
L'OREAL GROUP
CRM Specialist - Skinceuticals
CDI · Montreal
L'OREAL GROUP
Conseiller(Ère) en Ressources Humaines Junior (12 Mois)
CDI · MONTREAL
LEVI'S
Associate Operations Manager
CDI · Toronto
ESTÉE LAUDER COMPANIES
Associate Consultant - Clinique - Saskatchewan - Saskatoon
CDI · Saskatoon
ESTÉE LAUDER COMPANIES
Associate Consultant - Clinique - Sudbury/ Thunderbay, Ontario
CDI · Toronto
L'OREAL GROUP
Education Consultant
CDI · Toronto
PVH
HR Specialist, Total Rewards
CDI · Montreal
NORDSTROM CANADA RETAIL INC
Security Ambassador 1
CDI · Langley City
L'OREAL GROUP
Demand Planner
CDI · Montreal
RALPH LAUREN
Polo Factory Store - General Manager
CDI · Winnipeg
Published
Sep 24, 2020
Reading time
2 minutes
Share
Download
Download the article
Print
Click here to print
Text size
aA+ aA-

Shopify reveals customer data theft carried out by two "rogue" employees

Published
Sep 24, 2020

Multinational Canadian e-commerce company Shopify Inc. announced on Tuesday that two of its employees had stolen data from “less than 200 merchants,” potentially compromising the personal data of consumers visiting the webstores in question.


According to Shopify, payment card details were not affected by the incident - Image: Shopify

 
“Two rogue members of our support team were engaged in a scheme to obtain customer transactional records of certain merchants,” the company explained in a blog post, going on to highlight that both employees have had their access to the Shopify network terminated and that the incident has been reported to law enforcement.
 
According to Shopify, customer data that may have been exposed by the incident includes basic contact details – such as email, name, and address – and information about orders, such as products and services purchased. The company was, however, eager to reassure consumers that complete payment card numbers and similar sensitive personal or financial details were not affected by the incident.

Shopify further emphasized that it is working with the FBI and other international agencies in their investigations concerning the breach. Although the company does not currently have evidence of the stolen data being used, it pointed out that investigations are still in their early stages, and that any developments will be communicated to the merchants affected.
 
“This incident was not the result of a technical vulnerability in our platform, and the vast majority of merchants using Shopify are not affected,” stressed the company. “Our teams have been in close communication with affected merchants to help them navigate this issue and address any of their concerns. We don’t take these events lightly at Shopify. We have zero tolerance for platform abuse and will take action to preserve the confidence of our community and the integrity of our product.”
 
This is not the first time that Shopify, which sells merchants subscription software to facilitate the running of online stores, has had the security of its platform seemingly called into question. In 2019, a bug in the company’s software that could have led to the exposure of the revenue information of a number of merchants was discovered by a security researcher.

Copyright © 2020 FashionNetwork.com All rights reserved.