Last updated 1 month ago
Morele.net, a Polish e-commerce retailer, experienced a data breach in 2019 that exposed approximately 2.5 million customer records. The breach was discovered and disclosed in the same month, affecting the company's customer database containing extensive personal and transactional information.
The attack involved unauthorized access to the company's customer database, resulting in the exfiltration of comprehensive customer data including names, email addresses, phone numbers, hashed passwords, order histories, and payment details. The breach exposed sensitive customer information that could facilitate identity theft and financial fraud against affected individuals.
Polish authorities charged a 29-year-old Polish national in connection with the breach seven years after the incident occurred. The legal proceedings demonstrate the extended timeline for cybercrime prosecution and the persistence of law enforcement in pursuing data breach cases.
Unauthorized access to customer database
The Morele.net breach demonstrates that e-commerce platforms handling millions of customer records must implement robust database access controls and monitoring to prevent unauthorized data extraction. The seven-year gap between breach occurrence and criminal charges highlights the importance of maintaining comprehensive forensic evidence and cooperating with law enforcement for successful prosecution of cybercrime cases.
Sign in to join the discussion.
Company
Industry
Location
Discovered
Disclosed
Records Affected
Attack Vector