"The info was shared on Daily Dark Web, where approximately 14 million Panera Bread customer records were taken during the intrusion. The dataset allegedly includes names, email addresses, postal addresses, phone numbers, and account-related details. The group claims the stolen information amounts to roughly 760 MB of compressed data. If accurate, the scale of the alleged breach would place it among the larger consumer data exposures reported in recent months, particularly within the food and retail sector."
"While there is no indication that payment card data or passwords were included, the type of personal information described could still be used for phishing, identity fraud, and account takeover attempts. Cybersecurity experts routinely warn that large troves of basic customer data can be just as valuable to criminals as financial details, especially when combined with information obtained from other breaches. ShinyHunters told The Register that it gained access to Panera Bread's systems through Microsoft Entra single sign-on."
ShinyHunters claims it obtained sensitive customer data linked to Panera Bread and listed the company on its data leak site. The group alleges approximately 14 million customer records were taken, including names, email addresses, postal addresses, phone numbers, and account-related details, totaling about 760 MB of compressed data. Panera Bread has not publicly confirmed the breach. There is no indication that payment card data or passwords were included, but the exposed information can enable phishing, identity fraud, and account takeover attempts. ShinyHunters said access was gained through Microsoft Entra single sign-on, highlighting SSO security concerns and a wider campaign affecting multiple sectors.
Read at TechRepublic
Unable to calculate read time
Collection
[
|
...
]