Russia trade data breaches

Main article: Data leaks in Russia

2024

The data of hundreds of thousands of customers of one of the largest online auto parts store in Russia Rossko was leaked

The site and services of a large network of auto parts stores Rossko were attacked by hackers. As the Telegram channel "Information Leaks" reported on November 6, 2024, a partial database of orders with rossko.ru. was posted on one of the shadow forums There are 10 million lines in the shortened database, and in the full database of orders there are a total of 33,349,009 lines. Read more here.

Data leakage of 1.2 million customers of Detsky Mir stores

On October 10, 2024, it became known that cybercriminals had penetrated the IT infrastructure of the Detsky Mir chain of stores. As a result of the hack, personal data of approximately 1.2 million customers were posted on the Internet for open access. Read more here.

Data of millions of visitors to Burger King restaurants was leaked

On October 10, 2024, it became known that cybercriminals had entered the Burger King IT infrastructure. As a result of the hack, the personal data of millions of visitors to this fast food chain was leaked. Read more here

Data of millions of users of the marketplace "Fair of Masters" was leaked

On October 9, 2024, it became known that cybercriminals had penetrated the IT infrastructure of the Fair of Masters marketplace. As a result of the hack, the personal data of millions of users of this platform was leaked. Read more here

The manufacturer of sportswear leaked the data of customers. He blamed the incident on a vulnerability in 1C-Bitrix

As TAdviser discovered in September 2024, the Magistrate's Court of the Leninsky District of Penza found the Russian sportswear manufacturer Nordski (Ski Plus LLC) violated the law on personal data due to the leakage of personal data of users and customers from its website. The company explained the incident by the presence of a vulnerability in the 1C-Bitrix website management system, which it uses. Read more here.

Data of millions of visitors to the Vinlab alcohol store network was leaked

In early July 2024, it became known that cybercriminals hacked the information infrastructure of the Vinlab chain of alcoholic beverages stores. As a result, the personal data of millions of visitors to these outlets were leaked. Read more here.

The data of hundreds of thousands of customers of the Magnolia supermarket chain was leaked

In the online store of the Magnolia supermarket chain, two customer data leaks occurred with an interval of several days. The first leak, affecting 252 thousand unique records, was revealed on June 24, 2024, the second, containing more than 256 thousand records, on July 2, 2024. Read more here.

The data of the largest Russian online store of glasses and contact lenses was leaked

On May 27, 2024, it became known that cybercriminals managed to penetrate the IT infrastructure of the largest Russian online store of glasses and contact lenses - the site Ochkov.net. As a result, the personal information of the service customers was leaked. Read more here.

The data of hundreds of thousands of users of food delivery services Performance Group was leaked

At the end of April 2024, it became known that the personal data of hundreds of thousands of users of food delivery services Performance Group got into open access on the Internet. Cybercriminals have at their disposal a large fragment of the payment transaction database of a number of platforms, including levelkitchen.com, m-food.ru and p-food.ru. Read more here.

Data of millions of users of the online store "Online Trade" was leaked

In early March 2024, it became known that as a result of a hacker attack, the personal data of more than 3.8 million users of the online store "Online Trade" was leaked. According to reports, an attacker was involved in the hack, who had previously published on the Internet information about users of the educational portal GeekBrains and the logistics company SDEK. Read more here.

The data of hundreds of thousands of customers of the Orteka orthopedic salon network was leaked

In early March 2024, it became known that the IT infrastructure of the Orteka orthopedic salon network (orteka.ru) was subjected to a hacker attack. As a result of the hack, the data of hundreds of thousands of customers was leaked. Read more here.

2023

A third of attacks on retailers led to a halt in sales

In 2023, a third of attacks on retailers led to a halt in sales. Positive Technologies reported this on April 1, 2024.

According to a study by Positive Technologies, Russian retailers and e-commerce companies were in the spotlight of hackers, entering the top 3 in terms of reports of stolen data and infrastructure access in the shadow market. At the same time, 80% of ads about Russian trading companies offer free distribution of stolen databases.

At the end of 2023, the share of incidents with theft of data from retailers and e-commerce companies increased to 74%. The main goal of cybercriminals is to obtain personal information of customers. Almost half (46%) of confidential information leaks contained this data.

We see several reasons for the large number of ads selling initial access to the infrastructure of retail companies, "said Anna Golushko, senior analyst at the Positive Technologies research group," first of all, outdated databases force cybercriminals to actively seek access to systems for fresh and more complete information. In addition, the constant development of the shadow market attracts new participants, including inexperienced hackers who specialize in gaining initial access and then selling it to more experienced attackers.

On average, the cost of each second announcement for 2023 did not exceed $1000. However, amid geopolitical tensions, hacktivists give away stolen databases of Russian retailers and e-commerce for free.

Key techniques used by attackers to attack trading companies are malware infection (58%), exploitation of vulnerabilities (42%) and various social engineering methods (39%). Most often, hackers attack CMS systems (content management systems) used by online stores, which leads to theft of customer payment data and penetration into the company's infrastructure. These attacks not only undermine customer confidence, but can also cause serious damage to the reputation of companies and business as a whole. So, in 2023, a third of retailers around the world faced a halt in sales as a result of cyber attacks.

Positive Technologies experts believe that a large percentage of leaks are associated with an increase in the amount of information in companies, which often becomes uncontrollable. This causes problems with the inventory of the data infrastructure, its classification and control of access to them. Therefore, in retail and e-commerce, there is a need for a Data security platforms (DSPs) class solution that allows you to manage various types of data regardless of their structuring and location. This approach will build effective cybersecurity in industries that process large amounts of information.

There was a leak of data of millions of customers of the chain of stores "Girlfriend"

The data of millions of customers of the chain of cosmetics and perfume stores "Girlfriend" was leaked. The profile Telegram channel "Information Leaks" reported this on August 2, 2023. Read more here.

The data of millions of users of the online bookstore was leaked book24.ru

In early June 2023, it became known about the leak of data from millions of users of the leak of an online book store book24.ru. Later, on July 24, 2023, the Telegram channel "Information Leaks" clarified that out of more than 3.5 million pairs of records including email and password, almost 99% are unique, that is, they have not previously been found in leaks. Read more here.

There was a leak of customer data from Bukvoed, Leroy Merlin, Yours and Eat at Home

==

==

==

==

==

==

==

==

2022

==

==

==

==

==

==

==

==

Security researcher Bob Dyachenko discovered in the public domain the database of the food delivery service "2 Shores" with personal data of users of the service in 15 cities. This became known on March 30, 2022. Read more here.

The darknet sells data of 87 thousand visitors to the Moscow shopping center "Metropolis"

In February 2022 Darknet , the data of almost 87 thousand visitors to the Moscow shopping center "" were put up for sale in. Metropolis According to the "Information Telegram Leaks" channel, a database has entered the network, including such personal information of citizens as name, phone number, email address, links to social networks Vkontakte("," Facebook and). Instagram More. here

2021

A court in Moscow fined Oriflame for leaking personal data of customers

On November 18, 2021, the World Judicial District of the Khamovnichesky District fined Oriflame 30 thousand rubles for leaking personal data of customers. The company was found guilty of committing an administrative offense under Article 13.11 of the Administrative Code ("Violation of the legislation of the Russian Federation in the field of personal data storage"). Read more here.

Oriflame leaked 1.5 million passports of Russian citizens

On August 24, 2021, information appeared that Oriflame made a large-scale leak of 1.5 million passports of Russian citizens. All of them appeared in the public domain. Read more here.

2020: Red and White customer Data Base became available for download to everyone

On January 28, 2020, it became known about the leakage of data from customers of the Krasnoye and Beloye alcohol market chain. The loyalty program base got on the Internet. Read more here.

2019:14 million company and buyer records leaked

On September 16, 2019, it became known that about 14 million records about companies and individuals from Russia were made publicly available. An accidental leak was made by the fiscal data operator Drimkas. Read more here.

Notes