Click For Photo: https://techcrunch.com/wp-content/uploads/2017/09/data-breach.png?w=711
European online contact lens supplier Vision Direct has revealed a data breach which compromised full credit card details for a number of its customers, as well as personal information.
Compromised data includes full name, billing address, email address, password, telephone number and payment card information, including card number, expiry date and CVV.
Vision - Direct - Customers - Company - Questions
It’s not yet clear how many of Vision Direct’s customers are affected — we’ve reached out to the company with questions.
Detailing the data theft in a post on its website Vision Direct writes that customer data was compromised between 12.11am GMT November 3, 2018 and 12.52pm GMT November 8 — with any logged in users who were ordering or updating their information on visionDirect.co.uk in that time window potentially being affected.
Customers - Data - Theft
It says it has emailed customers to notify them of the data theft.
“This data was compromised when entering data on the website and not from the Vision Direct database,” the company writes on its website. “The breach has been resolved and our website is working normally.”
Customers - Banks - Credit - Card - Providers
“We advise any customers who believe they may have been affected to contact their banks or credit card providers and follow their advice,” it adds.
Affected payment methods include Visa, Mastercard and Maestro — but not PayPal (although Vision Direct says PayPal users’ personal data may still have been swiped).
Wake Up To Breaking News!