Back to Radar
HA

HauteLook

High

In 2018, HauteLook exposed 28M user records including personal data and bcrypt-hashed passwords.

Records exposed
28,510,459 records
Breach date
Breach Aug 7, 2018
Last update
Updated Mar 21, 2019
Source

What data was exposed?

Fields reported as compromised in this breach record.

Dates of birthEmail addressesGendersGeographic locationsNamesPasswords

Why does this breach matter?

In-depth analysis of the breach and its implications.

In August 2018, the online shopping platform HauteLook experienced a data breach where unauthorized parties accessed sensitive user information, including 28 million records containing names, email addresses, passwords hashed using bcrypt, genders, dates of birth, and geographic locations. This data was later distributed in early 2019, highlighting the importance of robust cybersecurity practices.

Impact Analysis

Understanding the scope and consequences of this breach.

User Impact
Users faced enhanced risks of targeted phishing and identity theft due to the exposed personal information.
Business Impact
The company experienced reputational damage and needed to coordinate customer notification and response efforts.
Affected Sectors
  • E-commerce
  • Fashion Retail
Geographic Impact
  • Global

What You Should Do

Recommended actions to take in response to this breach.

If You Were Affected

  • Immediately change passwords for HauteLook accounts and any reusing the same credentials.
  • Activate multi-factor authentication (MFA) where available.
  • Monitor all financial and online accounts for unexplained activity.

Preventive Measures

  • Avoid reusing passwords across different sites.
  • Adopt a password manager for strong, unique passwords.
  • Stay vigilant against phishing attempts exploiting exposed data.

Frequently Asked Questions

Common questions about this breach and what it means for you.

Bcrypt hashing adds computational complexity to password attacks, enhancing security.