Gearbest data breach: millions of customers data exposed

Just to let you guys know (as many BLF’ers might have ordered from Gearbest and might be a victim):

https://www.reddit.com/r/3Dprinting/comments/b13p8o/gearbest_databases_revealed_to_be_left/

Best practice for now: Change your password, let’s hope Gearbest gives a reaction to this breach and of course solves the issues they have.

Thanks. Password changed.

Thanks for the heads-up.

Sheet never ends.
Gets old man.

Thank God for Paypal.

Just curious, why change password now? Breach was announced, but it was not one time leak but a report that database access is not secured. I can’t see any response from gearbest that problem was investigated and fixed. In that case, they got your old password and if you change it, they can get your new password too.

Reason to change password now would be if you’ve used the same password somewhere else, which you should never do anyway.

You will have to change the gearbest password (again) after gearbest fixes the problem (if that happens)

You can check if your email’s password is hacked here: https://haveibeenpwned.com/

thanks for sharing.. changed my PW

^This

Changing your password doesn’t fix anything.

I’m changing passwords every month and suggest you do the same.
Mike

I know.
And then if you used Paypal your home address and email address are still stolen…

So what good does it do to change your password if the hackers can get in any time they want? I just went in and updated all my personal info to bogus info, and will just never shop there again. Would delete my account, but don’t see a way to do it. I use paypal, so at least they don’t have any financial info

This is just good practice, mainly because if they had access, anybody could have had access. Changing your password is the least you can do, it prevents people from accessing your Gearbest account. Next to that, if you use the same password for multiple websites, change is everywhere to a unique one for each website.

And you’re right, in the future you might want to change your password again if the fix the problem,

I just assume that when I give info to a Chinese company, all my data is “hacked”.

Here’s info about Gearbest basically denying they were hacked over a year ago. Apparently, nothing has changed with that company.

My data is so fubared that even the hackers are confused :face_with_monocle:

thanks M8

PW changed

PW changed

It’s all I can do for now. :person_facepalming:

Interesting to read that Zaful, Rosegal, DressLily and Gearbest are having the same parent company (Globalegrow). And if you belive whats written on vpnMentor they all have the same security problem.
Changing the password is useless unless they fix the breach. Only if you use your GB, Rosegal,DressLily. . . password also on other sites (like your e-mail acc. . . .)it is usefull to change the password (for your e-mail. . . ).

This explains why Google sent me a “your gmail account may have been breached” or “Was this you”. Statement yesterday. Changed my email password.

I kind of figured they would be lax on security. My purchase history is rather boring. But on the bright side of these high volume data leaks is your information will have to shifted through millions of other peoples data, that is unless your a specific target.