A data breach has been reported on a dark web forum, targeting one of Australia’s largest consumer electronics retailers, digiDirect. The breach includes sensitive information of over 304,000 customers. The database dates back to 2024, raising serious concerns about the security of personal data on digiDirect’s website. According to the leaked post, the database contains a wide array of personal details, including:
- Full Names
- Email Addresses
- Phone Numbers
- ZIP Codes
- Country and State/Province Information
- Customer Since Data
- Billing and Shipping Addresses
- Dates of Birth
- Company Information
- Contact Numbers
- “AIPP Verified” Status
The leak also highlights sensitive billing details, such as the Billing First Name and Billing Last Name, posing severe risks for identity theft and fraud. The sample data from the breach has been provided with the attacker showcasing their access by linking to a portion of the allegedly stolen information.
