Havenly, a US-based interior design web site, has disclosed a data breach after a hacker posted a database containing 1.3 million user records for free on a hacker forum.
Havenly is an online interior design and home decoration site where users can get help designing a room in their house from certified designers.
Last week, BleepingComputer reported that the ShinyHunters hacking group had leaked the databases for 18 companies on a hacker forum for free. These databases contained a combined total of 386 million user records.
One of the leaked databases contained 1.3 million user records for Havenly.com.
Havenly database leaked on a hacker forum
From the samples of this database seen by BleepingComputer, the leaked data included a user's login name, full name, MD5 hashed password, email address, phone number, zip, and various other data related to the usage of the site.
Sample of the leaked Havenly user database
On July 27th, BleepingComputer contacted Havenly to report the data breach but had not received a reply to our inquiry.
Yesterday, five days after we sent our email, Havenly officially disclosed the data breach and are emailing notifications to users.
Havenly issues data breach notification
Havenly is sending out data breach notifications stating that they "recently became aware of a potential incident" and performed a mandatory reset of all passwords.
"We take the security of our community very seriously. As a precaution, we wanted to let you know that we recently became aware of a potential incident that may have affected the security of certain customer accounts. We are working with external security experts to investigate this matter."
< ..
Support the originator by clicking the read the rest link below.
