Back

Shwapno Supermarket Data Breach Exposes 4 Million Customer Records

Severity: High (Score: 66.0)

Sources: Thedailystar

Summary

Shwapno, Bangladesh's largest supermarket chain, reported a data breach affecting over 40 lakh customers. Hackers compromised the company's database and are demanding a ransom of $1.5 million. The breach, which occurred in December 2025, resulted in the exposure of customer names, phone numbers, and purchase histories. Customers began noticing their information circulating on social media, prompting concerns about the security of their data. Managing Director Sabbir Hasan Nasir confirmed that the company is working with forensic experts and police to investigate the incident. Despite the breach occurring months ago, Shwapno only recently identified the intrusion and has not yet issued a public warning to customers. The company is preparing to file a case against the attackers. The situation highlights the vulnerabilities in Shwapno's cyber defenses and the urgent need for improved security measures. Key Points: • Shwapno's database breach affects over 4 million customers. • Hackers are demanding a ransom of $1.5 million for data restoration. • Customer data, including names and purchase histories, has been leaked on social media.

Key Entities

  • Data Breach (attack_type)
  • Ransomware (attack_type)
  • ACI Limited (company)
  • Shwapno (company)
  • Bangladesh (country)
  • India (country)
  • Pakistan (country)
  • T1567 - Exfiltration Over Web Service (mitre_attack)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed