https://www.infosecnews.org/pre-ipo-online-fashion-marketplace-poshmark-announces-data-breach/
By William Knowles @c4i
Senior Editor
InfoSec News
August 1, 2019
Poshmark, the largest social commerce marketplace for fashion alerted users on
Thursday via email and their blog that "data from some Poshmark users was
acquired by an unauthorized third party."
"The data acquired does not include any financial or physical address
information, and we do not believe your password was compromised." Poshmark
recommends that you change your password as a precaution and security best
practice.
According to Poshmark, Canadian users weren't affected and this data breach was
limited to U.S. users only.
The data that was stolen includes "certain user profile information specified
for public use such as username, first and last name, gender, and city."
"Certain internal account information such as email address, user ID, size
preferences, and one-way encrypted passwords salted uniquely per user (making
it nearly impossible to use these passwords to access an account), as well as
social media profile information collected when users connect social media
accounts to Poshmark" and "Certain internal Poshmark preferences for email and
push notifications"
[...]
--
Subscribe to InfoSec News
https://www.infosecnews.org/subscribe-to-infosec-news/
https://twitter.com/infosecnews_
