M-Vanna.ru

In September 2021 the Russian online retailer M-Vanna specializing in bathroom equipment suffered a data breach. An unauthorized party gained access to the backend systems resulting in the exposure of customer personal information and order history. The incident affected approximately 11 thousand users. Leaked data included contact details such as phone numbers and email addresses along with physical delivery addresses and technical identifiers like IP addresses. Customer passwords were also compromised stored in MD5 hash format which is considered cryptographically weak and vulnerable to cracking. Detailed purchase records were also part of the exposed dataset.