Cyber Incident Victim: My Intimacy

Intimacy Bra Fit Stylists discovered on May 5, 2015, that its ecommerce server had been compromised, potentially exposing customer data. An investigation determined that unauthorized code had been inserted into the server infrastructure. The breach impacted U.S. customers who placed or attempted to place orders through myintimacy.com between December 15, 2014, and April 30, 2015. Compromised information included full names, credit card numbers, associated expiration dates, and card verification values (CVVs). The company did not disclose the exact number of affected individuals. Forensic analysis confirmed that attackers gained sufficient access to misappropriate personal information during the four-and-a-half-month exposure window. The intrusion specifically targeted transactional data processed through the online sales platform.

Law enforcement agencies assisted Intimacy in conducting an ongoing investigation following the breach discovery. The company implemented security enhancements to its policies, procedures, and technical safeguards to prevent recurrence. All potentially affected customers received direct notification about the incident and its potential consequences. Intimacy offered impacted individuals complimentary identity theft protection services and credit monitoring coverage for twelve months at no cost. The New Hampshire Department of Justice published the organization's security breach notification letter on June 4, 2015, confirming these remediation measures. No additional technical details regarding the attack methodology or threat actor attribution were disclosed in public filings. The incident exclusively affected customers engaged with the ecommerce platform during the specified timeframe, with no evidence suggesting compromise of physical retail locations or other business operations.