Online retail giant The Iconic has vowed to issue refunds to customers affected by online security breaches which left people out of pocket by hundreds of dollars.
Customers reported a large number of hacking attempts and security breaches, with hackers successfully compromising accounts and placing fraudulent orders without their permission.
First reported by news.com.au, the brand confirmed they saw a surge in “credential stuffing” affecting their customers — a targeted cyber attack used by hackers.
Stolen usernames and passwords from one organisation, usually obtained in a data breach, are used by hackers to infiltrate and access client accounts on separate websites.
A spokesperson from the Iconic has confirmed they are working with all customers to address these incidents and will be issuing a timely refund.
“Our teams are proactively intercepting unauthorised access attempts and cancelling any fraudulent orders made, in addition to providing customers with full refunds for any successful orders made that have been dispatched,” the spokesperson said.
The Iconic is Australia’s largest online retailer and has quickly become one of Aussies’ favourite shopping destinations thanks to its speedy shipping, generous return policy and — of course — fantastic sales that run all year around. It sells the products of more than 1500 different clothing brands, many of them local Australian retailers.
Customers of The Iconic have been taking to social media and online forums to express their frustrations, highlighting a lack of response from the brand.
“This happened to me on Saturday. Thankfully my bank picked it up but I could not access my Iconic account or reset a password,” an angry customer wrote.
“I have tried to contact Iconic but have had no luck so I can’t access my account to delete any other payment information … Major fail by Iconic.”
“My account was hacked too. $524 spent on instax film. Email address changed. Shipping address changed to an address in Victoria,” another furious person wrote.
A third hacked customer added: “My account was hacked and over $1,000 of purchases made and I cannot get through to anyone from The Iconic except a robot that hasn’t responded for 6 days.”
“I’ve been a loyal customer for many years and will not shop with them again, terrible way to treat a loyal customer.”
The brand’s Facebook has been flooded with customers sharing their horrifying hacking stories, with one woman going as far as claiming The Iconic has compromised her safety.
“My account was hacked over $3000 spent and people just showed up to my house demanding the packages that were delivered here,” the woman wrote.
“My families safety is compromised!!!!!”
The woman told news.com.au she is “scared” and is waiting for police to turn up.
Earlier today customers of The Iconic received an email addressing these issues, with the brand urging people to change their passwords to stay protected against security breaches.
A spokesperson for The Iconic said they have recently seen an increase in fraudulent activity and are urging customers to be vigilant when it comes to proactively managing their account security.
“We have recently seen an increase in fraudulent account login attempts on THE ICONIC, which our security and fraud teams continue to actively manage, in conjunction with our security partners,” the spokesperson said.
“The security of our customer data is of the utmost importance to us and we continue to work with our third party security partners to protect against all fraudulent activity.”