Eco-friendly online retailer The Good Collective trading as Flora & Fauna has become the latest victim in the series of cyber attacks targeting Australian businesses.
The company, which is a part of BWX’s Digital Segment, has identified a “malicious code” unlawfully inserted into the Flora & Fauna website which may have resulted in 2500 customers’ credit card numbers and expiry dates being shared with an unauthorised third party.
Customers who transacted on the Flora & Fauna website between August 13 and September 29 were notified today of the breach and were informed of the necessary steps they need to take in order to protect their card details.
The business has confirmed no other personal information such as customer names, CVV codes, passwords or other information entered at checkout were accessed.
The breach was limited to the Flora & Fauna website and has not affected other parts of the business.
BWX CEO Rory Gration apologised and assured potentially affected customers they will be provided with appropriate information and support.
“We take the privacy and security of customer data very seriously and we want to assure our customers that we acted promptly to identify, isolate and remove the malicious code on the Flora & Fauna website, as well as taking additional steps to upgrade the security on the website.”
In accordance with Australian privacy laws, the Office of the Australian Information Commissioner has also been notified.
