The audio and wearables brand lost around 2GB of data on the dark web forum. Personally identifiable information like name, address and contact number is available for purchase
Customer data for over 7.5 million boAt customers has appeared on the dark web. Personally identifiable information (PII)—like name, address, contact number, email ID, customer ID and more—is available for purchase. The threat actor has leaked around 2GB of data on the forum.
On April 5, a hacker named ShopifyGUY claimed to breach the data of audio products and smartwatch maker boAt Lifestyle. The threat actor dumped files of data breach with access to PII information of customers, which has 75,50,000 entries.
Forbes India verified the information by speaking to some of the customers who confirmed purchasing boAt products in the recent past.
These data breaches have an impact that goes beyond the immediate loss of personal information. People are more vulnerable to financial fraud, phishing scams and identity theft. Sophisticated social engineering attacks could be framed by threat actors leveraging personal details of individuals to get access to bank accounts, conduct transactions, and use credit cards fraudulently, explains Threat Intelligence Researcher Saumay Srivastava.
“The consequences for companies include a loss of customer confidence, legal consequences and reputational harm. The major implications make it even more essential to implement adequate security practices,†he adds.