[BreachExchange] Natura’s Avon suffers ‘cyber incident’ weeks after major data breach

Destry Winant destry at riskbasedsecurity.com
Thu Jun 11 10:22:22 EDT 2020


Brazilian beauty brand owner Natura & Co has confirmed that a ‘cyber
incident’ has affected its cosmetics brand Avon.

According to the security filing on 9 June, the breach “interrupted
some systems and partially affected operations”.

The full details of the breach have not been disclosed, but the
personal care conglomerate said Avon is evaluating the extent of the
incident and “working diligently to mitigate the effects”.

In a statement to Cosmetics Business Avon said: “On 9 June, Natura &
Co communicated that Avon has suffered a cyber incident in its
Information Technology environment.”

The direct-selling brand also said it is working diligently to
normalise its operations and resolve the matter.

The filing comes weeks after it came to light that Natura & Co
suffered a massive data breach from its website natura.com.br in

The leak, which was discovered by cybersecurity company Safety
Detectives, exposed full names, dates of birth and usernames of more
than 250,000 consumers.

Additional information of 40,000 customers, related to the payment
company Wirecard, was also exposed and accessible for more than two

More information about the BreachExchange mailing list