The PandaBuy online store became the victim of a cybercriminal attack. As a result of the hackers’ activities, the data of over 1.3 million customers was exposed. Their full names, addresses and telephone numbers are available online.
Shopping in online stores are subject to various risks. The goods may get lost, damaged or arrive incomplete. It may also turn out that the ordered item is counterfeit or “inspired” by another. This problem is especially visible in the case of orders from Asian stores, where is treated neglectfully.
The rest of the article is below the video
The biggest problem in Saboteur. Yoshi: Dubiel and I almost had a fight
PandaBuy ma ogromne problemy
April 2, 2024 online store PandaBuy fell victim cyberataku. The hackers’ actions led to the leakage of data of 1.3 million store customers. PandaBuy offers podrabiane buty and fashion accessories. The attack is responsible for, among others, hacker Sanggiero, who boasted regarding his actions on the forum in dark webie.
The data was stolen by exploiting several critical vulnerabilities in the platform’s API and other flaws were identified that allowed access to the site’s internal services,” the hacker wrote. “The data included over 3M unique user IDs, name, surname, phone numbers, emails, login IP address , order details, order ID, home address, postal code, country and so on.
PandaBuy confirms the leak is authentic?
Among the customers whose data was leaked from PandaBuy, there are Poles. Their personal data is currently floating around X. Cybersecurity researcher Troy Hunt, founder of HaveIBeenPewd, a site that deals with Internet user data leaks, confirmed that the shared database belongs to customers PandaBuy. Initially, hackers boasted that they had stolen the data of 3 million users, but according to Hunt, this number is less than half. Some X users believe that PandaBuy’s client list includes Polish influencers and rappers.
The owners of PandaBuy have not officially commented on the leak. Internet users believe that the store’s representatives are doing everything they can to sweep the matter under the carpet. For this purpose, they remove unflattering entries on Discordwhich refer to a cyber attack.
