Pandora Cyber Attack Exposes Customer Data Via Third-Party Vendor

Pandora, the global jewellery brand, confirmed today that it suffered a cyber attack that allowed unauthorised access to certain customer data. The company informed customers directly via email, explaining that the breach occurred through a third-party platform it uses, not its core internal systems.

While no financial or highly sensitive information was compromised, the breach still affected personal data, including names, phone numbers and email addresses. Pandora reassured customers that the attack has been contained and that its security systems have since been reinforced.

The company made it clear that passwords, credit card details and similar information were not part of the breach. Still, cybersecurity experts warn that even limited personal data can be used as a gateway for more targeted scams.

According to Christoph C. Cemper, founder of cybersecurity firm AIPRM, the exposed information leaves customers vulnerable to phishing attempts. “Attackers often use compromised emails to send fake messages ...