Wanelo

High Impact

1 December 2018

•

23,188,883 records affected

•

Dehashed

Search on Google

Description

In December 2018, the online platform Wanelo experienced a data breach that led to the unauthorized access of their database. The incident exposed 23 million unique records containing email addresses and passwords, which were stored as either MD5 or bcrypt hashes. The breach details emerged in April 2019 when the stolen data was discovered being sold on a dark web marketplace.

What to do if you're affected

1.Change your password immediately if you have an account with this service
2.Enable two-factor authentication (2FA) wherever possible
3.Check if your email appears in the breach using Have I Been Pwned
4.Monitor your accounts for suspicious activity
5.Consider using a password manager to generate unique passwords

Learn More About Data Breaches

Have I Been Pwned

Check if your data has been compromised

ENISA

EU Agency for Cybersecurity

Wanelo Data Breach | Cyber Hub