ShellCodeX Breach Report
Lazada RedMart Data Breach
redmart.lazada.sg
Verified breach
Passwords exposed
Accounts exposed
1,107,789
Breach date
30 Jul 2020
Added to tracker
10 Nov 2020
Data classes
6
What happened
In October 2020, news broke of Lazada RedMart data breach containing records as recent as July 2020 and being sold via an online marketplace. In all, the data contained 1.1 million customer email addresses alongside names, phone numbers, physical addresses, partial credit card numbers and passwords stored as SHA-1 hashes.
Exposed data
Email addresses
Names
Partial credit card data
Passwords
Phone numbers
Physical addresses
Recommended actions
- Change your Lazada RedMart password immediately, and update it anywhere you reused the same password.
- Enable two-factor authentication on the affected account and on your critical services (email, banking).
- Watch for targeted phishing emails referencing Lazada RedMart โ attackers weaponise breach data quickly.
- Monitor your bank and card statements closely and consider requesting a card replacement.
- Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
Am I affected?
Check whether your email address appears in this breach.
Check on HIBP