ShellCodeX Breach Report
Ralph Lauren Data Breach
ralphlauren.com
Verified breach
Accounts exposed
139,903
Breach date
11 Jun 2026
Added to tracker
18 Jun 2026
Data classes
5
What happened
In June 2026, fashion retailer Ralph Lauren was targeted in a ShinyHunters "pay or leak" extortion campaign. The group subsequently published hundreds of gigabytes of data they claimed was obtained from the organisation's Salesforce instance, including 140k unique email addresses along with names, phone numbers, genders and age groups.
Exposed data
Age groups
Email addresses
Genders
Names
Phone numbers
Recommended actions
- Watch for targeted phishing emails referencing Ralph Lauren โ attackers weaponise breach data quickly.
- Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
- Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected?
Check whether your email address appears in this breach.
Check on HIBP