In late February 2014, Sally’s Beauty Holdings noticed unusual network activity. Using an intrusion detection technology from Tripwire, which sends alerts when key system files are modified, Sally’s IT security were notified and shut down all external communication and began the investigation. Shortly thereafter they contacted Verizon’s cybersecurity and forensics teams.
Sally Beauty originally reported that no credit card or personal data had been stolen, but experts weren’t so sure. Then earlier this month, Sally Beauty announced that there had, in fact, been data loss of roughly 25,000 records. These stolen records contained credit card data, according to reports.