TvoyDom

In June 2023 the Russian hypermarket chain Tvoy Dom experienced a significant data breach when the threat actor group known as NLB leaked its customer database. The incident exposed personal details of approximately 675 thousand users. The leaked information includes full names, email addresses, phone numbers, and physical addresses. Furthermore the dump contained hashed passwords using the MD5 algorithm with salt which poses a security risk despite the encryption. This breach highlights ongoing vulnerabilities within large retail platforms in the region.