ArdyssLife reports third party data breach

ArdyssLife, a Las Vegas-based health and wellness company specializing in nutritional supplements, shapewear, and skincare products, is reporting a data breach affecting its customers.

The incident was discovered on December 9, 2024, when ArdyssLife detected unauthorized access to portions of its IT network operated by a third-party provider named Epic. The breach occurred between December 8 and December 9, 2024, during which attackers used malware to compromise the company's systems and access folders containing confidential consumer information.

ArdyssLife removed the malware, and launched an investigation to determine the scope of the incident and identify affected individuals. The investigation confirmed that an unauthorized party had gained access to sensitive customer data, including: 

• names, 
• addresses, 
• phone numbers, 
• email addresses, 
• Social Security numbers, 
• other personal information provided to the company.

The number of affected individuals and the potential financial impact are not disclosed.

On January 12, 2024, ArdyssLife began sending out data breach notification letters to all individuals whose information was compromised in the incident.