Denton, Texas – Sally Beauty Holdings Inc., which sells cosmetics and hair care products both through salons and its own chain of more than 3,000 retail Sally Beauty Supply stores globally, is reporting that it discovered an attempted data breach.
In a brief statement released March 5, Sally Beauty said its systems recently detected an attempted intrusion into its network, but due to a prompt response aided by a “top-tier” security firm, it believes no credit card or consumer data was compromised. The company said it will continue investigating the incident. The U.S. Secret Service is not currently investigating.
The New York Times reports that on Feb. 25, 2014, an intrusion technology called TripWire identified an intrusion, following which Sally Beauty shut down incoming communications and enlisted Verizon to help investigate. Despite Sally Beauty’s claim that no sensitive information was released in the intrusion, security blogger Brian Krebs has reported that 15 credit card numbers recently used at Sally Beauty stores were among a batch of 282,000 stolen numbers recently put up for sale on underground websites.