ShellCodeX
Tools โ€ข Events โ€ข News โ€ข Insights
ShellCodeX Breach Report

Pandabuy Data Breach

pandabuy.com
Significant exposure
Verified breach
Accounts exposed 1,348,407
Breach date 31 Mar 2024
Added to tracker 01 Apr 2024
Data classes 5

What happened

In March 2024, 1.3M unique email addresses from the online store for purchasing goods from China, Pandabuy, were posted to a popular hacking forum. The data also included IP and physical addresses, names, phone numbers and order enquiries. The breach was alleged to be attributed to "Sanggiero" and "IntelBroker".

Exposed data

Email addresses IP addresses Names Phone numbers Physical addresses

Recommended actions

  • Watch for targeted phishing emails referencing Pandabuy โ€” attackers weaponise breach data quickly.
  • Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
  • Exposed identity data raises identity-theft risk โ€” consider credit monitoring or a credit freeze.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP