News

The series of leaks continues: data of Gloria Jeans and Ascona clients has been published

Security Parrot Editorial Team

Hackers Continue to Leak Data of Large Companies

Gloria Jeans, Ascona Mattress Store, and Book24.ru Affected

Hackers have kept their promise and continued to “merge” the data of large companies. Now, the data of customers of the Gloria Jeans chain of clothing stores, as well as the Ascona mattress store and the book24.ru online book store, have appeared in the public domain. The published dumps contain 2-4 million lines.
The hacker group, which yesterday made open access databases with information about the clients of the Auchan and Tvoi Dom retail chains, promised to “leak” the data of 12 more large Russian companies in the near future.
According to Data Leakage & Breach Intelligence (DLBI) experts, the publication of leaks has indeed continued.
First, text files appeared in the public domain containing fragments of a database dump from the website of the Gloria Jeans chain of clothing stores (gloria-jeans.ru).
These text files contain data such as:
First Name Last Name;
email address (3.16 million unique addresses);
telephone (2.36 million unique numbers);
Date of Birth;
loyalty card number;
date of creation and update of the record (from September 24, 2018 to May 18, 2023).
The researchers write that they randomly checked random email addresses from this leak through the password recovery form on the gloria-jeans.ru website and found that the data is valid. It was also noted that hashed (bcrypt) passwords of users come across in the files, obviously, they got there by accident, when “cutting out” data from a complete dump.
Representatives of Gloria Jeans told the media that the company is already investigating the incident and checking whether the data belongs to buyers.

Book24.ru and Askona Mattress Store Also Affected

After that, fragments of two SQL dumps from the Bitrix CMS, presumably belonging to the book24.ru online book store and the Askona mattress store (askona.ru), were posted on the network.
According to DLBI, the book24.ru dump contains 4,003,488 lines, including:
First Name Last Name;
telephone (2.4 million unique numbers);
email address (3.8 million unique addresses);
hashed (with salt) password;
gender (not for everyone);
date of birth (not for everyone);
date of creation and update of the record (from June 01, 2016 to 29 my 2023).
In turn, the askona.ru dump contains 1,948,828 lines, including 1.5 million unique phones and 1.3 million unique mail addresses with a similar set of fields. The most recent entry in this dump is April 20, 2023.
The hackers have not yet revealed the identity of the companies that will be affected by the data leak. However, the data of customers of the Gloria Jeans chain of clothing stores, as well as the Ascona mattress store and the book24.ru online book store, have already been leaked.
The data leaked includes first and last names, email addresses, telephone numbers, dates of birth, loyalty card numbers, and dates of creation and update of the records. The hackers have also accidentally leaked hashed passwords of users.
Representatives of Gloria Jeans have confirmed that the company is investigating the incident and checking whether the data belongs to buyers.
The hackers have not yet revealed the identity of the companies that will be affected by the data leak. However, the data of customers of the Gloria Jeans chain of clothing stores, as well as the Ascona mattress store and the book24.ru online book store, have already been leaked.
The data leaked includes first and last names, email addresses, telephone numbers, dates of birth, loyalty card numbers, and dates of creation and update of the records. The hackers have also accidentally leaked hashed passwords of users.
The hackers have not yet revealed the identity of the companies that will be affected by the data leak. However, the data of customers of the Gloria Jeans chain of clothing stores, as well as the Ascona mattress store and the book24.ru online book store, have already been leaked.
The data leaked includes first and last names, email addresses, telephone numbers, dates of birth, loyalty card numbers, and dates of creation and update of the records. The hackers have also accidentally leaked hashed passwords of users.
Representatives of Gloria Jeans have confirmed that the company is investigating the incident and checking whether the data belongs to buyers.
The incident has raised serious concerns about the security of customer data. Companies must take measures to ensure that customer data is secure and protected from hackers. This includes implementing strong security protocols, encrypting customer data, and regularly monitoring their systems for any suspicious activity.
In addition, companies should also provide customers with clear information about how their data is being used and stored. Customers should be informed of any changes to the company’s privacy policy and should be given the opportunity to opt-out of any data collection or sharing.
The recent data leak is a reminder that companies must take the security of customer data seriously. Companies must ensure that customer data is secure and that customers are aware of how their data is being used and stored. Only then can companies ensure that customer data is protected from hackers.

Weekly Updates For Our Loyal Readers!

Share this Article
Lost your password?