It has been reported that a well-known threat actor named “888” has allegedly exposed a database linked to the popular sporting goods store Decathlon.
The claim was made public through a tweet by DarkWebInformer, suggesting that some data has been exposed.
Update From Decathlon: “On May 27, 2024, our cybersecurity teams in Spain became aware that data containing email addresses belonging to employees of Decathlon Spain was allegedly being offered for sale online.Upon initial analysis, it has been confirmed that this data originated from a third-party application and that only emails of Spanish employees are concerned. No passwords or other data appear to be included in the set. We can also confirm that no customer data was impacted. We are committed to ensuring the privacy and security of all our employees.”
ANYRUN malware sandbox’s 8th Birthday Special Offer: Grab 6 Months of Free Service
Cybersecurity experts have weighed in on the situation, emphasizing the importance of robust security measures for large retailers.
Decathlon could face significant legal and financial repercussions if the breach is confirmed.
This includes:
- Changing passwords for their Decathlon accounts and any other accounts using the same password.
- Monitoring bank and credit card statements for any unauthorized transactions.
- Be cautious of phishing emails or messages attempting to exploit the situation.
As the situation develops, how Decathlon will respond to these serious allegations remains to be seen.
The company must conduct a thorough investigation to determine the extent of the breach and implement measures to prevent future incidents.
Free Webinar on Live API Attack Simulation: Book Your Seat | Start protecting your APIs from hackers