Have I Been Pwned analyzed the information and confirmed that the breach exposed 197,400 individuals, including unique email addresses, geographical locations, purchase details, and support tickets.
The extortion group ShinyHunters claimed the breach, leaking a 140GB file with stolen documents allegedly from BigQuery instances.
Although Inditex stated that the attackers did not access names, phone numbers, addresses, or payment information, the leaked data includes email addresses, locations, and purchase records.
Inditex communicated that the compromised databases were hosted by a former technology provider and contained information about business relationships with customers in various markets.
The company, owned by the Inditex group, operates over 1,500 stores worldwide and is part of one of the largest fashion distribution groups in the world.
Hackers obtained access to the fast fashion retailer Zara's databases, stealing data from more than 197,000 customers.