Zara Data Breach Exposes Information of 197,000 Customers

Zara Data Breach Exposes Information of 197,000 Customers

First seen 8 May 2026, 11:08 UTC Bleepingcomputerhaveibeenpwned.comSecurityaffairs.CoInfosecurity-MagazineCybernews+1 85% similarity 64.5

Article Content

Browse articles
ThreatCluster

Zara experienced a data breach affecting over 197,000 customers, attributed to the ShinyHunters extortion group. The breach involved a compromise of the Anodot analytics platform, leading to the theft of unique email addresses, product SKUs, order IDs, and support ticket details. Inditex, Zara's parent company, confirmed that sensitive information such as passwords and payment details were not compromised. The attackers leaked a 140GB archive containing the stolen data. Inditex has initiated security protocols and is notifying relevant authorities. The incident highlights ongoing vulnerabilities associated with third-party service providers. The ShinyHunters group has been linked to multiple breaches across various sectors, indicating a broader trend of targeted cyberattacks. As of now, the specific threat actor has not been officially confirmed by Inditex.

Key Points: • Over 197,000 customers affected by Zara data breach linked to ShinyHunters group. • Compromised data includes unique email addresses, product SKUs, and order IDs. • Inditex confirmed no access to passwords or payment information.

ThreatCluster AI

Timeline

2026-04-01
Zara data breach disclosed
Zara was targeted by ShinyHunters, resulting in unauthorized access to customer data.
BleepingComputer
2026-05-08
Data breach details revealed
Have I Been Pwned confirmed exposure of 197,400 records including email addresses and order IDs.
haveibeenpwned.com
2026-05-08
ShinyHunters claim responsibility
The group claimed the breach was part of a 'pay or leak' campaign involving Anodot.
BleepingComputer

Community

Browse all →