SHEIN
HighSHEIN suffered a breach in 2018, exposing 39 million accounts, including email addresses and hashed passwords.
- Records exposed
- 39,086,762 records
- Breach date
- Breach Jun 1, 2018
- Last update
- Updated Jul 17, 2019
What data was exposed?
Fields reported as compromised in this breach record.
Why does this breach matter?
In-depth analysis of the breach and its implications.
In June 2018, the online fashion retailer SHEIN experienced a cybersecurity breach impacting approximately 39 million unique user accounts. The breach compromised data including email addresses and MD5 hashed passwords. The event was discovered by the organization after two months in August and disclosed publicly the following month.
Impact Analysis
Understanding the scope and consequences of this breach.
- User Impact
- Users had their email addresses and password hashes exposed, potentially leading to targeted phishing or unauthorized account access.
- Business Impact
- The breach highlighted vulnerabilities in password security protocols and resulted in reputational damages and necessitated significant response measures.
- Affected Sectors
- Retail
- Consumer Fashion
- Geographic Impact
- Global
What You Should Do
Recommended actions to take in response to this breach.
If You Were Affected
- •Change compromised passwords on SHEIN accounts and any other accounts using the same credentials.
- •Monitor for suspicious activity on the affected email address.
- •Consider enabling multifactor authentication on all accounts.
Preventive Measures
- •Avoid using the same password across multiple platforms.
- •Use strong, unique passwords for each account, supported by a password manager.
- •Ensure secure password hashing methods, such as bcrypt or Argon2, are used by online services.
Frequently Asked Questions
Common questions about this breach and what it means for you.
Attribution
Additional attribution provided with the breach record.
JimScott.Sec@protonmail.com