Cult make-up brand Benefit has revealed some of its customer names and email addresses may have been compromised following a security breach.
The cosmetics firm alerted web users to the breach, which affected a former unnamed email vendor and not Benefit itself, via email.
"We were just informed by a former email vendor that the database with our customers' names and email addresses has been compromised by an unauthorised person," the emails read.
Benefit, which also allows web users to purchase its goods online, said the only information at risk was names and email addresses.
"The vendor has assured us that 'a rigorous assessment determined that no other personal identifiable information associated with those names was at risk. A full investigation is currently underway'," Benefit said.
"We have taken action to ensure that the entire database be removed from that vendor's files."
The cosmetics firm warned some web users may face spam emails as a result of the breach. However, the firm advised web users to only open emails from senders they know.
"Benefit will never ask for transactional information, such as credit card numbers via email, so delete any request," the firm added.
The data breach is thought to have also affected several other companies that work with the vendor, although they have not yet been named.