Major ManoMano Data Breach Exposes Personal Information of 38 Million Users
ManoMano data breach exposes data of 38 million users after hackers compromised a customer support portal. Stolen information includes names, emails, phone numbers, and support tickets, raising major cybersecurity and data privacy concerns.
Tech Author
A significant data breach apparently compromised the personal information of millions of users of the European DIY marketplace ManoMano. According to reports, hackers got access to the company's customer service system, potentially affecting up to 38 million users.
The issue reportedly occurred in January, but the company has just started alerting possibly affected users. The breach occurred after hackers accessed a customer service subcontractor that managed the company's support operations. Attackers were able to gain access to the system that manages customer service interactions.
According to reports, the attackers may have gained access to the company's Zendesk support platform, which is widely used by enterprises to manage customer queries and service requests. By cracking into this system, hackers were able to obtain sensitive information such as user names, email addresses, phone numbers, and customer care interactions. According to the states, the attackers stole approximately 43GB of data. The compromised data apparently includes information related to around 37.8 million user accounts, over 900,000 customer care tickets, and over 13,000 attachments.
The stolen data is expected to harm ManoMano users in the five European countries where the company operates. These countries include France, Germany, Italy, Spain, and the United Kingdom. The attacker reportedly acquired access via breaching a customer support service provider in Tunisia.
ManoMano is a significant ecommerce platform for DIY tools, gardening equipment, and home improvement products, with over 50 million monthly visits. Because of its enormous user base, the incident has sparked concerns about online data security and consumer privacy.
Although the company has started informing customers about the incident, it has not yet confirmed all details related to the hacker’s claims. Cybersecurity experts warn that exposed contact information could be used for phishing attacks, scams, or identity theft. Users are advised to stay alert for suspicious emails or messages following the breach.
Information referenced in this article is from Security Week
