Hundreds of Shopify merchants’ data leaked: California man sued

Hundreds of Shopify merchants’ data leaked: California man sued

California resident Tassilo Heinrich was arrested by the FBI in February and was recently indicted by a grand jury for his alleged involvement in the Shopify data breach a few months ago .

 

 

Heinrich, who faces charges of aggravated identity theft and conspiracy to commit wire fraud , worked with two Shopify customer support employees to steal merchant and customer data.

 

According to the indictment, Heinrich bribed an employee of a third-party customer support company in the Philippines with thousands of dollars worth of cryptocurrency to access Shopify's internal network and take screenshots of the data or upload it to Google Drive.

 

The leaked data includes merchant and customer names, billing and shipping addresses, email addresses, payment methods, and even details of purchased items, affecting nearly 200 merchants .

 

One merchant who received a data breach notification from Shopify said the last four digits of affected customers’ payment cards were also compromised , which the indictment confirms.

 

The data was used to build fake pages that looked like the original pages, or to sell the data to other unknown conspirators to help them commit fraud against merchants and customers .

 

Over the course of at least a year, Heinrich harvested more and more data from Shopify’s internal network, at one point asking if he could “remotely access” the computers of customer support employees while they slept.

 

It is understood that Heinrich has refused to plead guilty and is currently awaiting trial, which will begin on September 7.

 

Shopify spokesperson Rebecca Feigelsohn said in a brief statement: "Shopify has cooperated with the FBI's investigation into an incident involving the data of a small number of our merchants in September 2020. As previously reported, the individual involved is no longer working with Shopify. The criminal investigation is active and ongoing, and we cannot provide further comment at this time."

 

In today's big data era, data leaks are not uncommon. In addition to being hacked , security vulnerabilities or internal threats can also lead to data leaks . Recently, the editor also saw Amazon sellers discussing whether to change the backend password and email password after leaving the operation. Data leaks occur frequently, and sellers should also pay more attention to information security issues.

Shopify

Data breach

Seller

<<:  Overseas revenue reached $2.733 billion, and JS Global Lifestyle made a lot of money as it sold well on Amazon

>>:  The number of orders during the 4.4 promotion surged 4.5 times, and Shopee sellers entered a mode of explosive orders

Recommend

Sellers should know: Five ways to use video marketing

Video content has been very popular in the past y...

What is Desertcart? Desertcart Review, Features

Desertcart is an e-commerce platform in the UAE a...

What is Foxde Forum? Foxde Forum Review, Features

Foxde Forum - China Amazon seller communication p...

Another "Assassin" category becomes popular overseas!

At present, the "appearance economy" ha...

What is Paya Payments? Paya Payments Review, Features

Paya Payments makes payments easier, providing in...

What is Alipay International? Alipay International Review, Features

Alipay International makes digital payments acces...

Amazon's top five best-selling product categories in the first quarter of 2022

In contrast to the holiday season, e-commerce sal...

What is OrderWise? OrderWise Review, Features

<span data-docs-delta="[[20,{"gallery"...

What is China Software Group? China Software Group Review, Features

China Software Group provides one-stop transfer s...

What is Snapsheet? Snapsheet Review, Features

Snapsheet is a startup that helps people instantl...

What is Adore Me? Adore Me Review, Features

Adore Me is a disruptive lingerie e-commerce start...

What is Sephora? Sephora Review, Features

Sephora is the only omni-channel high-end beauty r...