ShellCodeX
Tools โ€ข Events โ€ข News โ€ข Insights
ShellCodeX Breach Report

Estante Virtual Data Breach

estantevirtual.com.br
Significant exposure
Verified breach Passwords exposed
Accounts exposed 5,412,603
Breach date 28 Feb 2019
Added to tracker 29 Nov 2023
Data classes 7

What happened

In February 2019, the Brazilian book store Estante Virtual suffered a data breach that impacted 5.4M customers. The exposed data included names, usernames, email and physical addresses, phone numbers, dates of birth and unsalted SHA-1 password hashes.

Exposed data

Dates of birth Email addresses Names Passwords Phone numbers Physical addresses Usernames

Recommended actions

  • Change your Estante Virtual password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing Estante Virtual โ€” attackers weaponise breach data quickly.
  • Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
  • Exposed identity data raises identity-theft risk โ€” consider credit monitoring or a credit freeze.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP