ShellCodeX
Tools • Events • News • Insights
ShellCodeX Breach Report

HauteLook Data Breach

hautelook.com
Major exposure
Verified breach Passwords exposed
Accounts exposed 28,510,459
Breach date 07 Aug 2018
Added to tracker 21 Mar 2019
Data classes 6

What happened

In mid-2018, the fashion shopping site HauteLook was among a raft of sites that were breached and their data then sold in early-2019. The data included over 28 million unique email addresses alongside names, genders, dates of birth and passwords stored as bcrypt hashes. The data was provided to HIBP by dehashed.com.

Exposed data

Dates of birth Email addresses Genders Geographic locations Names Passwords

Recommended actions

  • Change your HauteLook password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing HauteLook — attackers weaponise breach data quickly.
  • Exposed identity data raises identity-theft risk — consider credit monitoring or a credit freeze.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP