Fashion platform Limeroad’s customer database has suffered a breach with details of 1.29 million shoppers up for sale on the darkweb, reports US-based cyber security firm Cyble, at a time when online shoppers are switching from Chinese apps to Indian e-commerce apps.
“As part of our regular deepweb and darkweb monitoring, we came across a threat actor who claimed to have around 1.29 million customer records of LimeRoad. The data seems to be legitimate,” said Cyble.
The database leaked by a threat actor according to the firm includes the full names of users, their phone numbers and email ids. A sample of the data has been reviewed by ET.
E-commerce websites have been seeing an increased number of attacks over the past few months. In May, a hacker had leaked details of 15 million users registered on Tokopedia, Indonesia’s largest online store. ET has reached out to Limeroad with queries.
LimeRoad was co-founded in 2012 by Suchi Mukherjee, Manish Saksena and Ankush Mehra as a fashion marketplace for women and was the first social shopping website that dealt in clothing and accessories for women, men and children.