Aditya Birla Fashion and Retail claims safe after breach, hackers point out site still vulnerable

Aditya Birla Fashion and Retail (ABFRL) websites have faced a data breach earlier their month wherein more than 5.4 million email addresses of customers and employees were leaked. The company has informed that the situation has been taken care of and suggested a password reset to the customers as a “pro-active” measure.  

The alleged hacker group, ShinyHunters that has leaked the company’s data has revealed to Gadgets 360 that the websites of ABFRL are still vulnerable and ‘that it still had hidden access to ABFRL data’.  

ABFRL in a statement mentioned that forensic security experts have been involved for an investigation and has informed the authorities and is taking relevant actions to book the culprits. The company mentioned that “there has been no operational or business impact.”  

On January 15, data breach tracking website, Have I been Pwned has brought to light the alleged data leak. The leaked database has information of customers such as name, date-of-birth, address, phone number, order history and payment card details and passwords saved as Message-Digest algorithm 5 hashes.  

ABFRL has a range of brands including Van Heusen, Allen Solly, Louis Phillippe and Pantaloons in India.