If you’re a fan of fragrant bath soaps and face creams, you may have noticed that Lush.co.uk is currently out of order, the victim of repeat hacking that has compromised customers’ credit card details.
In numerous cases, the credit card fraud has changed from a potential danger to a reality. Some customers are reporting losses of over £1,000 and others are having to cancel cards, leaving them without access to accounts for days at a time.
Lush has handled the security breach well by clever social media marketing aimed at customers and hackers alike and all in their fun, casual style. But many customers aren’t laughing and Lush probably won’t be either. They face the possibility of paying PCI fines, which most traditional insurance policies won’t cover.