Eyewear retailer Warby Parker has warned of a data breach involving its customer accounts.
It described the incident in a letter addressed to customers and filed with the Vermont Attorney General’s Office.
“We’ve learned that unauthorized parties obtained usernames and passwords from other companies’ security breaches, and tried to use those usernames and passwords to log in to some Warby Parker accounts,” the company wrote in the Dec. 21 letter.
SC Magazine reports that 198,000 accounts may have been impacted.
Login attempts were made to “a limited number” of Warby Parker accounts from late September to late November, according to the letter.
Advertisement
Warby Parker stated that it required all potentially affected customers to reset their passwords.
“Our security team took immediate steps to remediate this event, and is working to try to prevent this kinds of event from occurring in the future,” the company explained. “We engaged third-party cybersecurity experts to help, and we continue to monitor our site traffic closely. We have reported this matter to law enforcement and are actively cooperating with them.”