Security News > 2022 > March > E-commerce giant Mercado Libre confirms source code data breach
Argentinian e-commerce giant Mercado Libre has confirmed "Unauthorized access" to a part of its source code this week.
Mercado additionally says data of around 300,000 of its users was accessed by threat actors.
The company's announcement follows a poll by the data extortion group, Lapsus$ in which they threatened to leak data allegedly stolen from Mercado and other prominent companies.
It is not clear at this time if the information of these 300,000 Mercado users was stored in one of the source code repos-a practice BleepingComputer has come across before when reporting on some data breach cases.
Data extortion group Lapsus$ claims to have accessed 24,000 source code repositories of both MercadoLibre and Mercado Pago, as seen by BleepingComputer.
The development resembles Lapsus$'s last week's leak of 190 GB-large archives that the group claimed contained "Confidential Samsung source code." The same week, Samsung confirmed that threat actors had indeed breached its network and stolen confidential information, including source code present in Galaxy smartphones.
News URL
Related news
- Free, France’s second largest ISP, confirms data breach after leak (source)
- Interbank confirms data breach following failed extortion, data leak (source)
- Nokia investigates breach after hacker claims to steal source code (source)
- How to Effectively Manage a Data Breach (source)
- Amazon confirms employee data breach after vendor hack (source)
- HIBP notifies 57 million people of Hot Topic data breach (source)
- US space tech giant Maxar discloses employee data breach (source)
- Fintech giant Finastra investigates data breach after SFTP hack (source)
- Bologna FC confirms data breach after RansomHub ransomware attack (source)
- Rhode Island confirms data breach after Brain Cipher ransomware attack (source)