- Mango suffered a third-party breach that exposed customer information but no financial data
- Notifications warn of phishing risks; Spanish authorities and police informed
- ShinyHunters, known data extortion group, may be linked to recent breaches in the retail sector
Retail powerhouse Mango, a company with more than 2,500 stores worldwide and operating in more than 120 markets, has suffered a third-party data breach and lost sensitive customer information on an as yet undisclosed number of customers.
Earlier this week, the company issued data breach notices to its customers, warning them of potential incoming social engineering and other attacks. In the breach, Mango said certain personal data was accessed through a breach at one of its external marketing service providers.
The attackers, who have not been named, stole people’s first names (surnames were not captured), countries, zip codes, email addresses and phone numbers. Sensitive financial information, such as bank data, credit card information, IDs or passports, as well as login information and passwords, was not compromised, Mango stressed.
Was it ShinyHunters?
The company continues to operate normally and confirms that its infrastructure was not breached or compromised in any way. The attack triggered the company’s usual security protocols, including notification of the Spanish Data Protection Agency (AEPD) as well as law enforcement.
For Raghu Nandakumara, VP of Industry Strategy at Illumio, the recent spate of attacks on retailers shows how these companies are not adequately assessing third-party suppliers: “Organizations still place far too much implicit trust in their suppliers, with research showing that fewer organizations are now concerned about ransomware risks from their supply chains,” he explained.
“They must focus on containing and limiting the impact of attacks to ensure threats are stopped in their tracks before they can cripple essential services and expose sensitive data.”
Mango did not say who the defaulting third party is or what it is doing about the retailer. It also did not name the attackers or discuss the nature of the breach.
However, a group known as ShinyHunters have been targeting major retailers for the past few months, breaching M&S, Harrods, Coop and loads of other retailers. Kering, the parent company of Gucci, Balenciaga and others, was also among the targets.
ShinyHunters is primarily a ransomware group that does not implement an encryption on its targets’ servers, but simply exfiltrates sensitive data and then demands payment in cryptocurrency in exchange for deleting the stolen files. If the requirements are not met, data is leaked onto the Internet, which can put the victim in the crosshairs of data watchdogs and can lead to class action lawsuits.
Via Cyber news
Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews and opinions in your feeds. Be sure to click the Follow button!
And of course you can too follow TechRadar on TikTok for news, reviews, video unboxings, and get regular updates from us on WhatsApp also.
