Sorry guys. This should have been posted way sooner but I’ve had a really busy day around here!
The Lush UK website has been hacked. This is pretty upsetting and scary news as I’m a chronic shopper on the site. Their notice is that any orders placed on October 4th, 2010 through today should contact their banks for advice as credit card details may have been compromised. I’ve contacted Lush Mail Order as I wanted to know about addresses, names, and other personal information as they are stating it was CC info only.
Either way, be sure to alert your debit and credit cards and if possible have a new card issued just to be safe. Lush has sent out an official e-mail letting customers know and have taken down their website and will be relaunching a new site shortly as a precautionary measure.
And I sincerely hope no one was affected by this drama.