PetFlow

In December 2017 the online pet supply retailer PetFlow suffered a significant data breach that compromised approximately one million user accounts. The incident involved an unauthorized access to the company database which was subsequently offered for sale on darknet marketplaces. The exposed data included customer email addresses and passwords stored as unsalted MD5 hashes which are highly vulnerable to cracking. This breach allowed attackers to potentially access customer accounts and perform credential stuffing attacks on other platforms.