Lush cosmetics reports cyberattack
Learn More
Lush, a British cosmetics retailer with a global presence, has confirmed it's dealing with a cybersecurity incident. The company, which operates in 49 countries and owns production facilities in Europe, Japan, and Australia, has not disclosed whether these locations are affected.
Lush has engaged external IT forensic experts to conduct a thorough investigation. Lush's early-stage investigation includes securing and screening all systems to contain the incident and minimize operational impact and has informed the relevant authorities.
Lush has not disclosed any details of the attack, whether there is any data breach or impacted individuals.
Update - The Akira ransomware gang has claimed responsibility for the cyber attack at Lush.They allegedly stole 110 GB of data, including:
- passport scans,
- staff-related data,
- company documents
- accounting,
- finances,
- tax,
- projects,
- clients.
There's no evidence yet of customer data exposure. Akira's website lists victims who didn’t pay the ransom and those pending data publication.
