Retailer Kmart Australia has asked the Australian Federal Police to investigate a security breach of its online product order system on Tuesday.
Customers took to Facebook to express their displeasure over the breach, in which customers’ names, emails, delivery and billing addresses, telephone numbers and product purchase details were exposed.
The retail group was adamant that no credit card or other payment details had been compromised or accessed.
“Yesterday, an email was sent directly to those customers whose details were accessed to inform them of this situation, and Kmart Australia has posted details of the breach on its social media pages,” the retailer said on its website.
“The breach only impacts a selection of customers who have shopped online with Kmart Australia. If customers have not received a message from Kmart Australia regarding this situation, they have not been impacted.
“As soon as Kmart Australia was made aware of the breach, immediate action was taken to stop any further information being accessed,” the retailer said.
Kmart also notified the Office of Australian Information Commissioner (OAIC) of the data breach on Tuesday September 29.
The OAIC said it was waiting to receive further information about the incident from Kmart Australia once the investigation had progressed.
“We will assess the information Kmart Australia provides to determine whether any additional action is required by the OAIC in keeping with the OAIC’s privacy regulatory action policy.”
Kmart Australia has urged concerned customers to call 1800 124 125.
Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.