:

RITUALS CONFIRMS DATA BREACH OF CUSTOMER RECORDS

SECURITY DESK1 MIN READ
WED, APR 22, 2026

■ AI-SUMMARIZED FROM 2 SOURCES ▸ TIMELINE

Cosmetics retailer Rituals has confirmed a data breach affecting its customer membership database. The company, which maintains records for 41 million customers, has not disclosed the exact number of individuals impacted.

Rituals disclosed the security incident involving its membership data, though specifics remain limited. The company declined to provide an accurate total of affected customers, citing ongoing investigation into the breach. With 41 million customer records in its membership system, the potential scale of exposure is significant. The retailer has not detailed what information was accessed, whether it includes personal details, purchase history, or payment data. The cosmetics giant has not announced specific remediation steps or notification timelines for affected customers. Security experts typically expect breached companies to offer credit monitoring and identity theft protection services. Rituals operates across multiple markets with a substantial customer base. This incident adds to a growing list of retail data breaches in recent years, highlighting ongoing security challenges in the e-commerce sector.

■ SOURCES

Bleeping ComputerTechCrunch

■ SUMMARY WRITTEN BY AI FROM THE LINKS ABOVE

■ MORE FROM THE SECURITY DESK

Fraudsters are creating convincing counterfeit news articles impersonating major publishers like the Guardian to direct social media users to bogus investment sites. The fake stories feature fabricated celebrity endorsements and financial narratives designed to establish credibility.

4H AGOIndustry Desk

A security analysis reveals xAI's Grok Build command-line tool transmits complete source code and project files to xAI's servers. The discovery raises data privacy questions for developers using the tool.

9H AGOAI Desk

A Cambridge study reveals that terrorist organizations including Boko Haram and ISIS are using ChatGPT, Claude, and Gemini to plan attacks and develop weapons. Safety filters designed to prevent such misuse have repeatedly failed.

21H AGOAI Desk

The Australian Cyber Security Centre has issued an alert about coordinated exploitation of vulnerable content management systems and plugins worldwide. The campaign targets organizations using outdated or unpatched CMS software.

23H AGOAI Desk

■ SUBSCRIBE TO THE DAILY BRIEF

ONE EMAIL, 5 STORIES, 06:00 UTC. UNSUBSCRIBE ANYTIME.