Monsoon warned of data breach risk

The Daily Telegraph - Business - - Front Page - By Laura Onita

MONSOON Ac­ces­sorize has been ac­cused of leav­ing cus­tomers’ de­tails vul­ner­a­ble af­ter a cy­ber se­cu­rity com­pany dis­cov­ered flaws in its sys­tems.

The re­tailer’s in­ter­nal files were al­legedly ac­cessed by a re­search team at VPNpro – giv­ing the IT com­pany ac­cess to cus­tomer in­for­ma­tion and sen­si­tive busi­ness doc­u­ments, such as sales fig­ures.

VPNpro ex­ploited a flaw that could al­low hack­ers to lock down the servers with ran­somware, a spokesman for the firm said – sim­i­lar to an at­tack on cur­rency busi­ness Trav­elex ear­lier this year.

The firm says it has tried to con­tact Monsoon re­peat­edly since the end of May to raise the is­sue, but has not heard back. It added that its re­search fol­lowed “eth­i­cal hack­ing stan­dards”.

A spokesman for Monsoon

said: “We have no record of ever be­ing con­tacted by these peo­ple and have no idea what they are re­fer­ring to and we do ques­tion their mo­tives in seek­ing this pub­lic­ity.

“We work with a num­ber of pro­fes­sional con­sul­tants who reg­u­larly scan our IT sys­tems for vul­ner­a­bil­i­ties and use a full range of third­party soft­ware to pro­tect the data that be­longs to us and our cus­tomers.”

Newspapers in English

Newspapers from UK

© PressReader. All rights reserved.