Copyright © 2019 Arcane Security Solutions ltd.


ALERT: 440 Million Records Exposed

February 13, 2020


Hi Guys,

Have you ever created an account with the cosmetics company Estée Lauder?

Estée Lauder- 440,000,000 Records Exposed

A non-password protected cloud database containing hundreds of millions of customer records and internal logs for cosmetic giant Estée Lauder has been found exposed online, according to researchers.



In all, 440,336,852 individual data pieces were exposed, according to researcher Jeremiah Fowler at Security Discovery. Many of the records importantly contained plaintext email addresses (including internal email addresses from the domain). There were also reams of logs for content management systems (CMS) and middleware activity. Fortunately, there was no payment data or sensitive employee information included in the records that Fowler saw.

Please take the following actions if you have ever had an account with Estée Lauder:

1. Change your password right away and never use the same password twice (see my article on credential stuffing below)

2. Send an email to them and let them know that you are aware of the breach and if your data has been exposed ask them to provide you with Identity protection and credit Monitoring services.

Please let me know if you need any help in relation to this.

Max Roberts,
Incognito Privacy Care

 Join our community of over 4 million happy people.


  • Use the Sign Up form below to join our community and we will notify you every time we have a new Privacy Tip. 

  • Please Share this tip with your family and friends and let them know we can help.

  • Install - If you are an Android user why not install Incognito and allow us to keep you safe from commercial spyware. Incognito is easy to use and extremely effective at finding and removing spyware. Just tap the 'Get it on Google Play' button below.

  • If you are happy with Incognito and its service please leave us a Review on the Play Store. 



Share on Facebook
Share on Twitter
Please reload