Overview
- Rituals says hackers downloaded data from its My Rituals loyalty database earlier this month, affecting customers in Europe, the U.K., and some in the U.S.
- The stolen fields include full name, date of birth, gender, home and email addresses, phone number, preferred store, and account type.
- The company reports it stopped the unauthorized access, contained the incident, and is notifying impacted members while a forensic investigation proceeds and regulators are informed.
- Rituals has not disclosed how many people are affected, though its loyalty program has more than 40 million members.
- No ransomware group has publicly claimed the attack and the company says it has seen no sign the data is online, while urging customers to watch for phishing attempts.