Bonobos

In August 2020 the menswear retailer Bonobos experienced a significant data breach when a backup of its cloud database was downloaded by a threat actor. The incident resulted in the exposure of approximately 70 GB of sensitive customer information. The leaked data included a wide range of personal details such as full names physical addresses and IP addresses as well as hashed passwords using the SHA1 algorithm with salt. Additionally the breach compromised partial financial information including credit card types names on cards expiration dates and the last four digits of card numbers. The data was later shared on a public hacking forum making it accessible to a broad audience of cybercriminals.