ADVERTISEMENT

Shipping labels reveal addresses in major fashion leak

Apparel Group, a fashion and lifestyle titan distributing Adidas, Asics, Levi‘s, and other world-renowned brands, has leaked several million shipping labels.

Apparel group data leak

Image by Cybernews.

Vilius Petkauskas
Vilius Petkauskas Deputy Editor
Mar 6, 2025 Updated: 6 March 2025 2 min read
“For instance, attackers might send emails or text messages impersonating a delivery service or retailer, claiming that a package is on the way but requires urgent verification of payment or personal information,”
researchers said.

What Apparel Group data was leaked?

  • Full names
  • Home addresses
  • Phone numbers
  • Order details
ADVERTISEMENT
Ernestas Naprys Paulina Okunyte Gintaras Radauskas Niamh Ancell BW
Stay informed and get our latest stories on Google News
Add us as your Preferred Source on Google.
  • Change the access controls to restrict public access and secure the bucket. Update permissions to ensure that only authorized users or services have the necessary access
  • Retrospectively monitor access logs to assess whether the bucket has been accessed by unauthorized actor
  • Use AWS Key Management Service (KMS) to manage encryption keys securely
  • Consider implementing best practices like regular audits, automated security checks, and employee training

  • Leak discovered: October 9th, 2024
  • Initial disclosure: October 9th, 2024
  • CISA contacted: January 2nd, 2025
ADVERTISEMENT