ROMWE DATA SECURITY INCIDENT – WEBSITE FAQS

Overview

On September 7, 2020, ROMWE discovered that some customers’ usernames and passwords found on the dark web may have been stolen from its computer network in July 2018, as determined by internal and forensic investigations.

These usernames and passwords, if used, could have provided access to some ROMWE customers’ account information, including name, email, and phone number, or other optional information customers may have stored.

ROMWE notified potentially affected customers via email and notice on our website, and we have forced password resets for all potentially affected customers. If a customer stored credit card information in their account, it remains secure since ROMWE does not keep customers’ full credit card information.

Frequently Asked Questions

What if I received an email notification?

If you received an email from ROMWE, your email address and password may have been compromised during a recently discovered cyberattack that took place in July 2018. Over the past several years, ROMWE has continued to improve its security protections as part of its regular security program activities, including by increasing password encryption and using more advanced intrusion detection technologies. As noted above, for the present matter, we have already forced password resets for all potentially affected customers.

What if I did not receive a notification?

If you did not receive a notification, this suggests that your email address was not associated with the compromised data set from July 2018. Still, we strongly recommend that if you have an account on ROMWE.com or have shopped there before, you should go to ROMWE.com and change your password by logging onto your account and clicking the “Edit Password” link under “Account Setting.”

How did this happen?

The perpetrators orchestrated a sophisticated cyberattack that compromised the security protections in place at the time and allowed them to access usernames and passwords on the network. As noted above, ROMWE has taken steps to prevent a reoccurrence. We are confident that the platform is now secure and are closely monitoring the network and servers so future data security incidents can be prevented.

Was my credit card information stolen?

No. If you stored credit card information in your ROMWE account, it remained secure because ROMWE did not and does not keep customers’ full payment card information.

Why did it take so long for ROMWE to figure out that security protections had been breached?

The perpetrators conducted a very sophisticated cyberattack that compromised the security protections that were in place at the time. The information that was compromised in July 2018 was only recently discovered on the dark web. However, once a potential data security incident was detected, ROMWE immediately hired a forensic cybersecurity company to help conduct an investigation. This took time to evaluate thoroughly.

Is ROMWE providing identify theft monitoring to affected customers?

Yes, ROMWE is providing identity theft protection services through IDX, the data breach and recovery services expert. A code and link was included in an email sent to all potentially affected customers on or around December 30, 2020.