A second hand goods chain based in the United Kingdom that specialize in technology, computing and video games, CeX has suffered an online security breach.
In an email to customers this morning, the retailer said it was investigating the breach “as a priority” and promised it was “taking a number of measures to prevent this from happening again.”
While the company is vague on the specifics of the hack, an email from managing director David Mullins says that the breach was a result of an unauthorized third party accessing CeX’s computer systems. Consequently, CeX believes that “some customer data has been compromised” including personal information such as first names, surnames, addresses, email addresses and phone numbers if they were supplied.
Data stolen includes names, addresses, email addresses, phone numbers, and encrypted data from credit and debit cards ( as the company ceased storing customer card details in 2009 though) it says.
The company said that they “take the protection of customer data extremely seriously and have always had a robust security system …. but additional measures were required to prevent such a sophisticated breach occurring and therefore employed a cyber security specialist to review our processes”.
As a second hand retailer, CeX trades with customers offering either cash or a voucher for redemption in any CeX store. A customer will typically receive around 50% cash and 65% exchange of CeX’s selling price for the item, depending on condition. Some premium and new release items CeX will offer close or sometimes higher than the as new retail value of the product. CeX offer a 24-month warranty subject to terms on all of the second hand products the company sells. CeX also accept Bitcoin as a valid currency for items on their website.
Customers will an account with Cex should visit: CeX for guidance on what to do.