ShopBack
HighShopBack suffered a breach in 2020, exposing 20M user records including emails and passwords.
- Records exposed
- 20,529,819 records
- Breach date
- Breach Sep 17, 2020
- Last update
- Updated Apr 25, 2021
What data was exposed?
Fields reported as compromised in this breach record.
Why does this breach matter?
In-depth analysis of the breach and its implications.
In September 2020, ShopBack, a well-known cashback rewards platform, encountered a significant data breach. This incident resulted in the exposure of over 20 million user records, including sensitive data such as email addresses, passwords encrypted with salted SHA-1 hashes, phone numbers, names, and geographic information. The compromised information was later made available to the public through dehashed.com, a repository of publicly disclosed data breaches. The event highlighted potential risks associated with handling user information on large online platforms.
Impact Analysis
Understanding the scope and consequences of this breach.
- User Impact
- Exposure of personal and login information increases risk of targeted phishing and unauthorized account access.
- Business Impact
- Trust degradation, regulatory scrutiny, and potential compensation liabilities.
- Affected Sectors
- E-commerce
- Technology
- Geographic Impact
- Global
What You Should Do
Recommended actions to take in response to this breach.
If You Were Affected
- •Change passwords on all accounts using the same credentials.
- •Enable two-factor authentication to strengthen account security.
- •Remain vigilant to phishing attempts.
Preventive Measures
- •Use unique passwords for different accounts.
- •Employ secure password storage solutions.
- •Stay attentive to breach notifications and react promptly.
Frequently Asked Questions
Common questions about this breach and what it means for you.