ShellCodeX
Tools โ€ข Events โ€ข News โ€ข Insights
ShellCodeX Breach Report

digiDirect Data Breach

digidirect.com.au
Limited exposure
Verified breach
Accounts exposed 304,337
Breach date 29 Sep 2024
Added to tracker 25 Oct 2024
Data classes 5

What happened

In September 2024, a data breach sourced from the Australian retailer digiDirect was published to a popular hacking forum. The breach exposed over 300k rows of data including email and physical address, name, phone number and date of birth. Approximately half the email addresses were on domains from external marketplaces including Amazon, eBay and Westfield.

Exposed data

Dates of birth Email addresses Names Phone numbers Physical addresses

Recommended actions

  • Watch for targeted phishing emails referencing digiDirect โ€” attackers weaponise breach data quickly.
  • Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
  • Exposed identity data raises identity-theft risk โ€” consider credit monitoring or a credit freeze.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP