Roughly 38 million people were likely impacted by a January data breach at European DIY retailer ManoMano after hackers compromised a customer support portal. The attackers, who claimed responsibility under the name Indra on BreachForums, allegedly stole names, email addresses, phone numbers, service tickets, and attachments—apparently by accessing a Zendesk instance via a compromised Tunisian subcontractor. #ManoMano #Indra
Keypoints
- ManoMano disclosed a January breach that likely affected roughly 38 million users.
- Attackers reportedly stole names, email addresses, phone numbers, customer service exchanges, and attachments.
- The breach resulted from the compromise of a customer service subcontractor, with access to a Zendesk instance.
- A threat actor using the name Indra claimed to have stolen about 43GB of data and posted it on BreachForums.
- The stolen data allegedly covers users across France, Germany, Italy, Spain, and the United Kingdom.
Read More: https://www.securityweek.com/38-million-allegedly-impacted-by-manomano-data-breach/