Security News > 2021 > January > Bonobos clothing store confirms breach after hacker leaks 70GB database
Bonobos men's clothing store has suffered a massive data breach exposing millions of customers' personal information after a cloud backup of their database was downloaded by a threat actor.
Bonobos started as an online men's clothing store but later expanded to sixty locations to try on clothes before purchasing them.
Last weekend, a threat actor known as ShinyHunters, who is notorious for hacking online services and selling stolen databases, posted the full Bonobos database to a free hacker forum.
After BleepingComputer contacted Bonobos about the leaked database, the clothing store told us that the threat actors did not gain access to internal systems but rather to a backup file hosted in an external cloud environment.
Update 1/24/21: Bonobos has begun to email data breach notifications to affected customers, as shown below.
Update 1/24/21: Bonobos has begun to email data breach notifications to affected users.
News URL
Related news
- Hacker claims Giant Tiger data breach, leaks 2.8M records online (source)
- U.S. Cyber Safety Board Slams Microsoft Over Breach by China-Based Hackers (source)
- Chipmaker Nexperia confirms breach after ransomware gang leaks data (source)
- Cybercriminals threaten to leak all 5 million records from stolen database of high-risk individuals (source)
- ArcaneDoor hackers exploit Cisco zero-days to breach govt networks (source)
- Helsinki suffers data breach after hackers exploit unpatched flaw (source)
- Russian hackers use new Lunar malware to breach a European govt's agencies (source)