Kmart Australia customers hit by online privacy breach in security hack
AN investigation is under way after Kmart Australia confirmed some of its customers’ private details have been hacked in an online security breach.
In a statement published on the company’s website, Kmart Australia stated that some customers’ identity (name), email address, delivery and billing address, telephone number and product purchase details were accessed in the breach.
But no online customer credit card or other payment details have been compromised or accessed.
The statement also said that customers affected have been sent an email to inform them of the privacy breach.
Kmart Australia has also contacted leading IT forensic investigators, the Office of the Australian Information Commissioner and Australian Federal Police to review the breach.
“This breach only impacts a selection of customers who have shopped online with Kmart Australia,” the statement said.
“If customers have not received a message from Kmart Australia regarding this situation they have not been impacted.
Kmart Australia said that they immediately took action when they were aware that customer details were hacked.
“As soon as Kmart Australia was made aware of this breach, immediate action was taken to stop any further information being accessed,” the statement said.
“The safety and security of customer’s private information is a priority for Kmart Australia.”
Social media users have lashed out at the company after being unable to find any official update about the breach on the Kmart Australia Facebook page.
While a media statement says that Kmart Australia “posted details of the breach on its social media pages”, customers were unable to find a post on their Facebook page.
One Facebook user wrote: “Kmart you need to be upfront about the personal data breach and advise customers publicly.”
Another wrote: “How come nothing on your page states that there was a breach in your security. only by chance did I check my inbox to see that there was a email regarding this matter. no more online shopping EVER with your store (or any other) with all the recent hackings going on worldwide, you would think that every one would be upping their game!!
Please I ask, can you post a statement for those who may not see the inboxes . (may be sent to spam box for example) or for those who may think the email itself is a scam.”
Many of those users affected have already copied and pasted the email they received on to Kmart Australia’s Facebook page for others to read.
Kmart Australia advises that any customers concerned about their details being accessed can call 1800 124 125.
The email sent to customers affected by the security breach is below:
Dear online customer,
Kmart Australia has experienced an external privacy breach of their customer online product order system. The customer details accessed were limited to name, email address, delivery and billing address, telephone number and product purchase details. No online customer credit card or other payment details have been compromised or accessed.
This communication is to let you know your details have been accessed and as soon as Kmart Australia was made aware of this breach immediate action was taken to stop any further information being accessed. Kmart Australia understands that the safety and security of customer’s personal information is important and has engaged leading IT forensic investigators to thoroughly review this matter fully.
If you receive any new communication that claims to come from Kmart Australia and is requesting personal details or an update of your details please do not respond to this request.
Kmart Australia sincerely apologises for any inconvenience this incident has caused. If customers have any concerns please contact the customer service centre on 1800 124 125.
Kind Regards,
Kmart Australia Limited