PandaBuy Data Breach: Exposed: 1.3 Million Accounts Breached

The popular online shopping platform PandaBuy, specializing in the delivery of clothing, footwear, and other goods from China, recently experienced a significant data breach affecting approximately 1.3 million customers. Responsibility for the system intrusion was claimed by at least two hackers, who posted the stolen information on a cybercriminal forum.

A member of the BreachForums community, operating under the alias Sanggiero, announced the disclosure of data allegedly obtained through the exploitation of multiple critical vulnerabilities within PandaBuy’s platform and API.

According to the hacker, the breach was executed in collaboration with another cybercriminal known as IntelBroker. This individual periodically appears in major hacks, including those involving General Electric, Hewlett Packard, and Los Angeles International Airport.

The information stolen from PandaBuy encompasses user IDs, first and last names, phone numbers, email addresses, login IP addresses, order details, order IDs, home addresses, postal codes, and countries of residence.

As proof of the breach, Sanggiero published a free sample of the data. The complete database is now available for purchase by other members of the dark web forum.

Troy Hunt, the founder of the Have I Been Pwned (HIBP) platform, confirmed that of the leaked email addresses, approximately 1.3 million are valid, with the remainder being duplicates. Hunt has added the leaked addresses to the HIBP database, enabling users to check whether they were impacted by the incident.

A PandaBuy representative stated that the leak was old and added that, according to the company’s security team, there have been no breaches this year. However, rumors quickly circulated online suggesting that the company was attempting to conceal a new hack.