ADVERTISEMENT

Card collectors' secrets spilled in massive Collectibles.com leak

Collectibles.com, a collectible cards marketplace, has leaked sensitive details of nearly 900K customers, exposing clients’ card listings, transaction records, full names, and other sensitive information.

Collectibles Getcardbase data leak

Image by Cybernews.

Vilius Petkauskas
Vilius Petkauskas Deputy Editor
Mar 19, 2025 2 min read
Ernestas Naprys Paulina Okunyte Gintaras Radauskas Konstancija Gasaityte
Stay informed and get our latest stories on Google News
Add us as your Preferred Source on Google.
Collectibles data sample
Sample of the leaked data. Image by Cybernews.

What Collectibles.com data was leaked?

ADVERTISEMENT
  • Full names
  • Email addresses
  • Profile picture links
  • Other user account details
  • Collectible card sales
  • Transactional data
Collectibles data sample
Sample of the leaked data. Image by Cybernews.
  • Restrict public access and require authentication for Elasticsearch instances.
  • Inform affected individuals about the exposure, advising vigilance against phishing or other malicious attempts.
  • Store sensitive data in encrypted form and enforce strict access privileges.
  • Deploy continuous security monitoring to detect and block suspicious activity in real time.
  • Evaluate the breach under relevant data protection regulations (e.g., GDPR) and notify authorities as necessary.
  • Develop a robust, documented plan for quickly identifying, investigating, and responding to future breaches.

  • Leak discovered: December 9th, 2024
  • Initial disclosure: December 9th, 2024
  • Leak closed: Late December, 2024
ADVERTISEMENT