ShellCodeX
Tools • Events • News • Insights
ShellCodeX Breach Report

Poshmark Data Breach

poshmark.com
Major exposure
Verified breach Passwords exposed
Accounts exposed 36,395,491
Breach date 16 May 2018
Added to tracker 02 Sep 2019
Data classes 6

What happened

In mid-2018, social commerce marketplace Poshmark suffered a data breach that exposed 36M user accounts. The compromised data included email addresses, names, usernames, genders, locations and passwords stored as bcrypt hashes.

Exposed data

Email addresses Genders Geographic locations Names Passwords Usernames

Recommended actions

  • Change your Poshmark password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing Poshmark — attackers weaponise breach data quickly.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP