Bonobos was originally an e-commerce company that expanded to more than 60 locations and became a subsidiary of Walmart. It is headquartered in New York City and specializes in selling men’s suits and dress-ware.
The leak pertained to the personal information of millions of people. The hacker leaked 70 gigabytes of data. Let’s put that in perspective. Imagine your entire iPhone filled to the brim; that’s 35,000 pictures. That equivalent has been leaked onto a free hacker site, allowing countless people to access the information.
The leak occurred when an unauthorized party downloaded a cloud backup of Bonobos’ database. This gave the bad actor access to the data, affecting millions.
This breach occurred in January 2021.
The leak could affect anyone who shopped at Bonobos, and it s unclear whether or not people who shopped in person were affected. Still, millions of people use Bonobos’ website each year, causing quite a commotion.
The leak impacted over 12 million records. The leaked information was grouped, resulting in the loss of 7 million shipping addresses, 3.5 million partial credit cards (the last four digits of the credit card, which is all many companies demand), and 1.8 million account information records. All this was taken by the bad actor, who, in turn, offered it to what is most likely millions of hackers.