CafePress, the popular T-Shirt and merchandise website, disclosed a data breach that exposed the personal details of 23 million of their customers.
The news was publicly reported by the data breach notification service Have I Been Pwned.
Finally, the security duo found on a hacker forum the dump containing details for roughly 493,000 accounts.
According to Have I Been Pwned website, CafePress was compromised in February 2019 and hackers accessed personal details of 23,205,290 users.
This exposed data include email addresses, names, passwords, phone numbers, and physical addresses.
Security experts criticized the way the company managed the incident, some of them pointed out that it has attempted to cover up the breach.
The records associated with the remaining users included
In response to the incident, CafePress forced users to reset their password without admitting the security breach.
Recently another company, the live marketplace for buying and selling limited edition sneakers, watches, handbags, and
Of course, this
(SecurityAffairs – CafePress, data breach)