The Business Times

Personal data of OG department store customers leaked

Published Thu, Jan 6, 2022 · 02:37 PM

[SINGAPORE] There has been a leak of OG department store customers' personal data such as names, mobile numbers and dates of birth, said the retailer on Thursday (Jan 6).

In a statement to OG members, the department store said it was notified on Tuesday about the data breach, which affected OG members, who are in either basic or gold tiers.

It added that its preliminary investigations indicated that the database, which had been stored and managed by an external third-party membership portal service provider, had been compromised.

The extent of the incident is currently being investigated, it said. "We are informing you (OG members) now so that you can take appropriate steps expeditiously to protect your online credentials," the department store said.

It did not state how many members were affected in its statement.

Data that may have potentially been compromised includes the names of OG members on the basic and gold tiers, their mailing addresses, email addresses, mobile numbers, genders, dates of birth, as well as encrypted NRIC data and passwords.

BT in your inbox

Start and end each day with the latest news stories and analyses delivered straight to your inbox.

It added that no financial information, such as credit card numbers, had been leaked.

OG said it has reported the matter to the police and authorities including the Personal Data Protection Commission (PDPC) and the Cybersecurity Agency of Singapore (CSA).

"We are also working with our service provider as well as cyber-security consultants and intend to fully investigate the breach, secure the database and take all necessary action to prevent recurrence," it said.

The retailer said that affected people should be wary of phishing or impersonation attempts. It urged members who have reused their OG membership password across different websites or platforms to change their passwords immediately to avoid any possible compromise of their other accounts.

Those affected by the incident can also enable additional security measures, such as multi-factor authentication if supported, said the retailer.

OG said its management is working with consultants and the authorities to strengthen its safeguards, systems and processes.

Those with questions and concerns can contact OG at pdp@og.com.sg

THE STRAITS TIMES

Cybersecurity

Copyright SPH Media. All rights reserved.

Reuse this contentFeedback
Latest T-bills Treasury Bills Results & Interest NewsLatest SSB Singapore Savings Bonds NewsLatest COE Certificate of Entitlement News
Latest Johor-Singapore SEZ NewsLatest BTO Build To Order & Sales of Balance NewsLatest STI Straits Times Index NewsLatest SGX Dividends, Share Price NewsLatest Bonds Market NewsLatest Singapore Stocks To Buy NewsLatest Singapore Economy News
View More