Security News > 2021 > January > Bonobos clothing store confirms breach after hacker leaks 70GB database
Bonobos men's clothing store has suffered a massive data breach exposing millions of customers' personal information after a cloud backup of their database was downloaded by a threat actor.
Bonobos started as an online men's clothing store but later expanded to sixty locations to try on clothes before purchasing them.
Last weekend, a threat actor known as ShinyHunters, who is notorious for hacking online services and selling stolen databases, posted the full Bonobos database to a free hacker forum.
After BleepingComputer contacted Bonobos about the leaked database, the clothing store told us that the threat actors did not gain access to internal systems but rather to a backup file hosted in an external cloud environment.
Update 1/24/21: Bonobos has begun to email data breach notifications to affected customers, as shown below.
Update 1/24/21: Bonobos has begun to email data breach notifications to affected users.
News URL
Related news
- White House links ninth telecom breach to Chinese hackers (source)
- Hackers steal ZAGG customers' credit cards in third-party breach (source)
- Ransomware gang leaks data stolen in Rhode Island's RIBridges Breach (source)
- UN aviation agency confirms recruitment database security breach (source)
- Telefónica confirms internal ticketing system breach after data leak (source)
- Hackers leak configs and VPN credentials for 15,000 FortiGate devices (source)
- HPE investigates breach as hacker claims to steal source code (source)
- CISA: Hackers still exploiting older Ivanti bugs to breach networks (source)
- Hackers exploiting flaws in SimpleHelp RMM to breach networks (source)