Security News > 2020 > October > Over 1M Lazada RedMart accounts sold online after data breach
Singapore's largest online grocery store Lazada Redmart has suffered a data breach after 1.1 million user accounts were put up for sale on a hacker forum.
Hackers selling the illicit data dumps told BleepingComputer they had obtained Lazada's MongoDB-based data set with data from over 1.1 million RedMart accounts.
In Lazada's data breach notification, the company claims that the data exposed in the breach is 18 months old.
When BleepingComputer asked the data breach broker how RedMart was compromised, they declined to share that information.
"We have taken immediate action to block unauthorised access to the database. This data was used on the previous RedMart app and website, which are no longer in use. Lazada customer data in Southeast Asia is not affected by this incident," reads the email notification.
News URL
Related news
- Hacker claims Giant Tiger data breach, leaks 2.8M records online (source)
- Yacht retailer MarineMax discloses data breach after cyberattack (source)
- OWASP discloses data breach caused by wiki misconfiguration (source)
- AT&T faces lawsuits over data breach affecting 73 million customers (source)
- SurveyLama data breach exposes info of 4.4 million users (source)
- US cancer center data breach exposes info of 827,000 patients (source)
- Home Depot confirms third-party data breach exposed employee info (source)
- AT&T now says data breach impacted 51 million customers (source)
- CISA warns about Sisense data breach (source)
- Cisco Duo warns third-party data breach exposed SMS MFA logs (source)