Have you ever shopped at the digital mall Wanelo?
In approximately December 2018, the digital mall Wanelo suffered a data breach. The data was later placed up for sale on a dark web marketplace along with a collection of other data breaches in April 2019. A total of 23 million unique email addresses were included in the breach alongside passwords stored as either MD5 or bcrypt hashes. After the initial HIBP load, further data containing names, shipping addresses and IP addresses were also provided to HIBP, albeit without direct association to the email addresses and passwords.
Please take the following actions if you have ever used Wanelo or if you have ever worked with them
1. Change your password right away and do never use the same password twice (see my article on credential stuffing below)
2. Send an email to Wanelo and let them know that you are aware of the breach and ask them to provide you with Identity protection and credit monitoring services.
Please let me know if you need any help in relation to this. Max Roberts, Incognito Privacy Care