.jpg)
A data breach allegedly occurred on Sunday at Pandabuy, an online store that aggregates items from Chinese e-commerce sites. As a result, 1,348,307 accounts were affected. A large amount of information has been leaked, including user IDs, first and last names, phone numbers, emails, login IP addresses, full addresses, and order information.
Sanggiero and IntelBroker both exploited multiple vulnerabilities to breach the company’s systems, allegedly leading to the leakage of the company’s data.
People throughout the world can use Pandabuy’s marketplace to access products from Chinese online marketplaces, such as JD.com, Tmall, and Taobao.
Approximately 1.3 million PandaBuy customers’ data has been accessed after two threat actors exploited multiple vulnerabilities to gain access to PandaBuy’s system, according to PandaBuy’s website. In addition to allowing international customers to purchase goods from a variety of Chinese e-commerce platforms, including Tmall, Taobao, and JD.com, PandaBuy is offering international users to purchase products from different e-commerce platforms.
There was a breach at PandaBuy yesterday claimed by an individual known as ‘Sanggiero’, allegedly performed by ‘IntelBoker’ in conjunction with the threat actor ‘Sanggiero’. The breach, according to Sanggiero, was possible as a result of exploiting critical API vulnerabilities, which allowed unautho
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.
This article has been indexed from CySecurity News – Latest Information Security and Hacking Incidents
Read the original article: