ShellCodeX Breach Report
SHEIN Data Breach
shein.com
Verified breach
Passwords exposed
Accounts exposed
39,086,762
Breach date
01 Jun 2018
Added to tracker
17 Jul 2019
Data classes
2
What happened
In June 2018, online fashion retailer SHEIN suffered a data breach. The company discovered the breach 2 months later in August then disclosed the incident another month after that. A total of 39 million unique email addresses were found in the breach alongside MD5 password hashes.
Exposed data
Email addresses
Passwords
Recommended actions
- Change your SHEIN password immediately, and update it anywhere you reused the same password.
- Enable two-factor authentication on the affected account and on your critical services (email, banking).
- Watch for targeted phishing emails referencing SHEIN โ attackers weaponise breach data quickly.
- Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected?
Check whether your email address appears in this breach.
Check on HIBP