- ManoMano lost sensitive data of 37.8 million customers via third-party Zendesk breach
- Exposed information includes names, emails, phone numbers and support communications
- The company disabled subcontractor access, notified authorities and warned users about phishing risks
Popular DIY, home improvement and gardening e-commerce site ManoMano has suffered a third-party cyber attack that saw it lose sensitive data on nearly 38 million customers.
In January 2026, a threat actor alias “Indra” allegedly broke into a customer service provider in Tunis through a Zendesk account. From there, they went on to exfiltrate sensitive customer data, including people’s full names, email addresses, phone numbers and customer service communications.
In a dark web forum post, published after the breach, Indra said 37.8 million people were affected.
Widespread problem
ManoMano confirmed the news to Bleeping Computerand adds that no passwords to the account were accessed and that the data on the company’s servers was not tampered with. The company also said it was now notifying affected individuals of the incident.
“We can confirm that ManoMano has recently notified customers of a security incident involving one of our third-party customer service providers (a subcontractor),” the company said.
“Upon discovery, we took immediate steps to secure our environment, including disabling the relevant access, revoking the subcontractor’s access to customer data, and strengthening access controls and monitoring,” they added. “We also notified the relevant authorities, including the CNIL and ANSSI, and informed affected customers with guidance to remain vigilant against phishing and social engineering attempts.”
ManoMano is a French marketplace that connects third-party sellers with consumers in six European countries. It operates both a consumer platform and a B2B arm, ManoManoPro, for professional artisans and attracts around 50 million unique visitors per month.
The company has warned its customers to be wary of incoming emails and other communications.
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews and opinions in your feeds. Be sure to click the Follow button!
And of course you can too follow TechRadar on TikTok for news, reviews, video unboxings, and get regular updates from us on WhatsApp also.
