Criminal hackers have stolen masses of personal data from customers of the Spanish fashion group Mango. An external marketing service provider discovered unauthorized access to certain personal data of customers, according to an email sent to those affected, including customers from Germany.
First name, email address, telephone number
Mango emphasized that its systems have not been compromised and security is functioning normally. The hackers gained access to data such as first name, country, zip code, email address and telephone number from the external service provider. The last names, bank details and passwords were not captured.
Mango said it had informed the Spanish Data Protection Agency (AEPD) of the situation and immediately activated its security protocols. The company advises its customers to watch out for suspicious messages in both emails and phone calls. Following similar incidents, cybercriminals have attempted to misuse victims’ data for phishing attacks.
There is a threat of phishing attacks
Phishing is an online scam in which criminals attempt to steal sensitive data such as passwords or banking information, for example by impersonating a trustworthy person or institution via a fake email or website.
The Mango data breach is another incident in a long line of cyberattacks on retailers and fashion chains. Mango is an international fashion group with headquarters in Plegamans near Barcelona. The company is one of the largest suppliers of women’s and men’s fashion and accessories worldwide.