Security News > 2021 > January > Bonobos clothing store confirms breach after hacker leaks 70GB database
Bonobos men's clothing store has suffered a massive data breach exposing millions of customers' personal information after a cloud backup of their database was downloaded by a threat actor.
Bonobos started as an online men's clothing store but later expanded to sixty locations to try on clothes before purchasing them.
Last weekend, a threat actor known as ShinyHunters, who is notorious for hacking online services and selling stolen databases, posted the full Bonobos database to a free hacker forum.
After BleepingComputer contacted Bonobos about the leaked database, the clothing store told us that the threat actors did not gain access to internal systems but rather to a backup file hosted in an external cloud environment.
Update 1/24/21: Bonobos has begun to email data breach notifications to affected customers, as shown below.
Update 1/24/21: Bonobos has begun to email data breach notifications to affected users.
News URL
Related news
- Orange Group confirms breach after hacker leaks company documents (source)
- Hackers leak configs and VPN credentials for 15,000 FortiGate devices (source)
- HPE investigates breach as hacker claims to steal source code (source)
- CISA: Hackers still exploiting older Ivanti bugs to breach networks (source)
- Hackers exploiting flaws in SimpleHelp RMM to breach networks (source)
- Hackers exploit Cityworks RCE bug to breach Microsoft IIS servers (source)
- Hacker leaks account data of 12 million Zacks Investment users (source)
- Chinese hackers breach more US telecoms via unpatched Cisco routers (source)
- Silk Typhoon hackers now target IT supply chains to breach networks (source)