Ferplast, a United Kingdom-based company that produces and sells a wide range of products and accessories for pets online, has allegedly been targeted in a data breach. The company, operating through its ferplast.co.uk domain, is a notable supplier for pet owners in the region. The incident was revealed when a threat actor published a post on a hacking forum, claiming to have exfiltrated and leaked the company’s customer database.
The threat actor alleges that the leaked database contains sensitive information belonging to over 11,000 customers. This exposure could place affected individuals at significant risk of phishing campaigns, identity theft, and other fraudulent activities. The compromised data allegedly includes a substantial amount of personally identifiable information (PII).
The following data has allegedly been compromised:
- Full Names
- Login credentials
- Password hashes and salts
- Email addresses
- Physical addresses (including city, county, country, and postcode)
- Phone and mobile numbers
- Account join dates and last login dates
