GoKawiilThe Seiko USA website was defaced over the weekend, displaying a message from attackers claiming they stole its Shopify customer database and threatening to leak it unless a ransom is paid.
Visitors to the "Press Lounge" section of the site were shown a page titled "HACKED," which replaced normal content with what appeared to be a ransom demand and data breach notification.
The message warned that attackers had gained access to the company's Shopify backend and exfiltrated sensitive customer information.
"This is an urgent security notification regarding your Shopify store. Your customer database has been compromised," read the defaced webpage.
"We have successfully breached your Shopify store's security systems and downloaded the entire customer database."
Seiko website defaced to show extortion message
Source: BleepingComputer
The threat actors claim the stolen data contains the following information:
Customer Information: Names, email addresses, phone numbers
Names, email addresses, phone numbers Order History: Purchase records, transaction details
... continue reading