Skip to content
Cyber Breaches
Search
Data breachResolved

Phone House España data breach (2021)

In April 2021, the Spanish retailer Phone House allegedly suffered a ransomware attack that also exposed significant volumes of customer data. Attributed to the Babuk ransomware, a collection of data alleged to be a subset of a larger corpus was posted to a dark web site and contained 5.2M email…

Victim
Phone House España
records
5.2M
SectorRetail
CountrySpain

Imported from Have I Been Pwned — pending editorial review and translation to French. The summary below is machine-extracted; consult the source for details.

In 2021-04-08, Phone House España was affected by a data breach. Approximately 5,223,350 accounts were exposed. In April 2021, the Spanish retailer Phone House allegedly suffered a ransomware attack that also exposed significant volumes of customer data. Attributed to the Babuk ransomware, a collection of data alleged to be a subset of a larger corpus was posted to a dark web site and contained 5.2M email…

Sources

  1. haveibeenpwned.comhttps://haveibeenpwned.com/PwnedWebsites#PhoneHouseEspaña
  2. phonehouse.eshttps://phonehouse.es

Related incidents

Data breachResolved

Aditya Birla Fashion and Retail data breach (2021)

In December 2021, Indian retailer Aditya Birla Fashion and Retail Ltd was breached and ransomed. The ransom demand was allegedly rejected and data containing 5.4M unique email addresses was subsequently dumped publicly on a popular hacking forum the next month.

Victim
Aditya Birla Fashion and Retail
Records
5.5M
Data breachResolved

Fantasy Football Hub data breach (2021)

In October 2021, the fantasy premier league (soccer) website Fantasy Football Hub suffered a data breach that exposed 66 thousand unique email addresses. The data included names, usernames, IP addresses, transactions and passwords stored as WordPress MD5 hashes.

Victim
Fantasy Football Hub
Records
66.5K
Data breachResolved

Fitmart data breach (2021)

In October 2021, data from the German fitness supplies store Fitmart was obtained and later redistributed online. The data included 214k unique email addresses accompanied by plain text passwords, allegedly "dehashed" from the original stored version.

Victim
Fitmart
Records
214.5K
Data breachResolved

Epik data breach (2021)

In September 2021, the domain registrar and web host Epik suffered a significant data breach, allegedly in retaliation for hosting alt-right websites. The breach exposed a huge volume of data not just of Epik customers, but also scraped WHOIS records belonging to individuals and organisations who…

Victim
Epik
Records
15.0M