The hack was discovered around 12pm. Instead of I Love Ugly’s carefully-curated branding, an extra-large image stretched across the page showed a naked man exposing himself, with the head of NBA player LeBron James superimposed across his face. Accompanying text read: “I Love Ugly can suck my ****” and “You’ve been hacked by mortecom”.
The retailer responded swiftly across social media with a series of texts and posts expressing apologies and embarrassment.
We want to formally apologise for the explicit imagery on our website. Our website has been hacked badly. We are fixing this now!— I Love Ugly (@iloveugly) June 18, 2015
"We are extremely embarrassed, and are trying to rectify the problem as fast as possible," the label said on Facebook. "Hold tight and we'll notify you when it is back up and running."
Managing director of Delta Insurance, Ian Pollard, yesterday called for retailers to take the risk of cyber attacks seriously and protect their data, as such attacks are “real, growing and very costly”.
He said retailers should treat data security as a priority for the whole business, consult with experts, and put processes in place to manage the situation in the event of a hack like I Love Ugly’s.
National cyber policy office director Paul Ash earlier this year warned that New Zealand retailers were vulnerable to hacks.
UPDATED: I Love Ugly's site has been restored to normal. The company took to Facebook to berate the hackers and assure customers that their details were safe. It said it was in the process of reviewing its security practices.