What happened in the Bonobos data breach?
Twingate Team
•
Apr 11, 2024
In August 2020, the men's clothing store Bonobos experienced a significant data breach. Hackers gained unauthorized access to the company's cloud backup database, stealing personal information of millions of customers and posting it on a hacker website forum.
How many accounts were compromised?
The breach impacted data related to approximately 2.81 million individuals.
What data was leaked?
The data exposed in the breach included email addresses, historical passwords, IP addresses, names, partial credit card data, passwords, phone numbers, physical addresses, and purchase information.
How was Bonobos hacked?
Hackers managed to breach Bonobos' security by exploiting a backup file hosted on a third-party cloud hosting platform, gaining access to 70GB of personal data.
Bonobos's solution
In response to the data breach, Bonobos took action to address the situation and protect its customers. The company notified affected customers of the incident and clarified that the breach was limited to backup files on a third-party cloud hosting platform, rather than their internal systems. While specific enhanced security measures taken by Bonobos are not detailed in the provided content, the incident highlights the importance of securing backup files, ensuring encryption, and implementing stricter access controls to protect sensitive customer information.
How do I know if I was affected?
Bonobos has notified customers believed to be affected by the breach. If you're a Bonobos customer and haven't received a notification, you may visit HaveIBeenPwned, a platform that monitors data breaches and can notify individuals if their data has been disclosed in recognized data leaks.
What should affected users do?
In general, affected users should:
Change Your Password: Immediately update your password for the breached account. Make sure the new password is strong and unique, and not previously used on any other platform.
Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.
Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account and consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.
For specific advice on Bonobos's data breach, reach out to their Contact Support page and follow the instructions to create a support case.
Where can I go to learn more?
For more information on the Bonobos data breach, check out the following news articles:
Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.
What happened in the Bonobos data breach?
Twingate Team
•
Apr 11, 2024
In August 2020, the men's clothing store Bonobos experienced a significant data breach. Hackers gained unauthorized access to the company's cloud backup database, stealing personal information of millions of customers and posting it on a hacker website forum.
How many accounts were compromised?
The breach impacted data related to approximately 2.81 million individuals.
What data was leaked?
The data exposed in the breach included email addresses, historical passwords, IP addresses, names, partial credit card data, passwords, phone numbers, physical addresses, and purchase information.
How was Bonobos hacked?
Hackers managed to breach Bonobos' security by exploiting a backup file hosted on a third-party cloud hosting platform, gaining access to 70GB of personal data.
Bonobos's solution
In response to the data breach, Bonobos took action to address the situation and protect its customers. The company notified affected customers of the incident and clarified that the breach was limited to backup files on a third-party cloud hosting platform, rather than their internal systems. While specific enhanced security measures taken by Bonobos are not detailed in the provided content, the incident highlights the importance of securing backup files, ensuring encryption, and implementing stricter access controls to protect sensitive customer information.
How do I know if I was affected?
Bonobos has notified customers believed to be affected by the breach. If you're a Bonobos customer and haven't received a notification, you may visit HaveIBeenPwned, a platform that monitors data breaches and can notify individuals if their data has been disclosed in recognized data leaks.
What should affected users do?
In general, affected users should:
Change Your Password: Immediately update your password for the breached account. Make sure the new password is strong and unique, and not previously used on any other platform.
Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.
Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account and consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.
For specific advice on Bonobos's data breach, reach out to their Contact Support page and follow the instructions to create a support case.
Where can I go to learn more?
For more information on the Bonobos data breach, check out the following news articles:
Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.
What happened in the Bonobos data breach?
Twingate Team
•
Apr 11, 2024
In August 2020, the men's clothing store Bonobos experienced a significant data breach. Hackers gained unauthorized access to the company's cloud backup database, stealing personal information of millions of customers and posting it on a hacker website forum.
How many accounts were compromised?
The breach impacted data related to approximately 2.81 million individuals.
What data was leaked?
The data exposed in the breach included email addresses, historical passwords, IP addresses, names, partial credit card data, passwords, phone numbers, physical addresses, and purchase information.
How was Bonobos hacked?
Hackers managed to breach Bonobos' security by exploiting a backup file hosted on a third-party cloud hosting platform, gaining access to 70GB of personal data.
Bonobos's solution
In response to the data breach, Bonobos took action to address the situation and protect its customers. The company notified affected customers of the incident and clarified that the breach was limited to backup files on a third-party cloud hosting platform, rather than their internal systems. While specific enhanced security measures taken by Bonobos are not detailed in the provided content, the incident highlights the importance of securing backup files, ensuring encryption, and implementing stricter access controls to protect sensitive customer information.
How do I know if I was affected?
Bonobos has notified customers believed to be affected by the breach. If you're a Bonobos customer and haven't received a notification, you may visit HaveIBeenPwned, a platform that monitors data breaches and can notify individuals if their data has been disclosed in recognized data leaks.
What should affected users do?
In general, affected users should:
Change Your Password: Immediately update your password for the breached account. Make sure the new password is strong and unique, and not previously used on any other platform.
Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.
Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account and consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.
For specific advice on Bonobos's data breach, reach out to their Contact Support page and follow the instructions to create a support case.
Where can I go to learn more?
For more information on the Bonobos data breach, check out the following news articles: