- Mango suffered a breach by a third party exposing customer data, but no financial data
- The notifications warn about phishing risks; Spanish authorities and police informed
- Notorious data extortion group ShinyHunters may be linked to recent retail breaches
Mango, a retail powerhouse with more than 2,500 stores worldwide and operating in more than 120 markets, has suffered a third-party data breach, losing confidential information on an as yet undisclosed number of customers.
Earlier this week, the company sent data breach notifications to its customers, warning them of potential social engineering and other attacks. In the breach, Mango said certain personal data was accessed through a breach at one of its third-party marketing service providers.
The attackers, who have not been identified, stole people’s names (last names were not taken), countries, zip codes, email addresses and phone numbers. Sensitive financial information, such as banking details, credit card information, IDs or passports, as well as login credentials and passwords, was not compromised, Mango emphasized.
Was it ShinyHunters?
The company continues to operate normally and confirms that its infrastructure was not breached or compromised in any way. The attack activated the company’s usual security protocols, including notification to the Spanish Data Protection Agency (AEPD), as well as the authorities.
For Raghu Nandakumara, vice president of industrial strategy at Illumio, the recent series of attacks on retailers shows how these companies do not sufficiently evaluate third-party suppliers: “Organizations still place too much implicit trust in their suppliers, and research shows that fewer organizations are now concerned about ransomware risks in their supply chains,” he explained.
“They must focus on containing and limiting the impact of attacks to ensure that threats are stopped in their tracks before they can cripple essential services and expose sensitive data.”
Mango did not say who the defaulting third party is or what it does in relation to the retailer. He also did not name the attackers or discuss the nature of the rape.
However, a group known as ShinyHunters has been targeting major retailers over the past few months, breaching M&S, Harrods, Coop and many other retailers. Kering, the parent company of Gucci, Balenciaga and others, was also among the targets.
ShinyHunters is primarily a ransomware group that does not implement encryption on its targets’ servers, but simply extracts sensitive data and then demands a cryptocurrency payment in exchange for deleting the stolen files. If demands are not met, data is leaked onto the Internet, which could put the victim in the crosshairs of data watchdogs and could lead to class action lawsuits.
Through cyber news
Follow TechRadar on Google News and add us as a preferred source to receive news, reviews and opinions from our experts in your feeds. Be sure to click the Follow button!
And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form and receive regular updates from us on WhatsApp also.
