A hacker utilizing the alias “Satanic” claims a WooCommerce information breach through a 3rd get together, promoting information on over 4.4 million customers/purchasers, together with information tied to main organizations like NVIDIA, Texas.gov, and the Nationwide Institute of Requirements and Expertise (NIST).
Simply hours after claiming accountability for a breach involving Magento, a hacker generally known as “Satanic” has surfaced once more, this time alleging an information breach related to WooCommerce, some of the broadly used eCommerce platforms on the internet.
In keeping with a submit made on Breach Boards earlier at this time, the menace actor claims the incident occurred on April 6, 2025, and includes the extraction of greater than 4.4 million information containing detailed private and enterprise data.
The announcement suggests the information wasn’t pulled from WooCommerce‘s core infrastructure straight however reasonably from methods carefully tied to web sites utilizing the platform, seemingly CRM or advertising automation instruments related by third-party integrations.
The info breach seems to incorporate each buyer and company-level data, together with emails, telephone numbers, bodily addresses, and social media hyperlinks to enterprise information similar to gross sales income, worker rely, area authority rankings, and platform utilization.
In complete, the hacker claims the database holds:
- 4,432,120 particular person information
- 1.3 million distinctive e-mail addresses
- Metadata on company web sites, together with expertise stacks and fee options.
Prime Organisations Listed within the Pattern Knowledge
A 1,000-line pattern shared by the hacker contains information from a number of notable web sites, similar to “nist.gov,” the official web site of the Nationwide Institute of Requirements and Expertise (NIST), a U.S. Division of Commerce company. Additionally listed is “texas.gov,” the official portal for the State of Texas.
Along with authorities entities, the pattern comprises information linked to main organizations, together with NVIDIA Company, the New York Metropolis Division of Schooling, the College of Oklahoma, and Oxford College Press, alongside information from different well-known establishments and personal corporations worldwide.
Every report contains detailed data usually present in well-arranged advertising databases, similar to estimated income, variety of SKUs (Inventory Retaining models), advertising platforms in use (e.g., ActiveCampaign, HubSpot), internet hosting suppliers, and hyperlinks to firm social media.
Curiously, a number of entries present references to WordPress CMS, with WooCommerce listed because the eCommerce plugin. Others spotlight integrations with Salesforce, Pardot, and numerous fee platforms like PayPal and Stripe. This factors to a knowledge supply bigger than WooCommerce itself, presumably compiled by APIs or scraped from uncovered CRM panels.
Knowledge for Sale
The hacker is presently providing the database on the market through direct messages or Telegram with out itemizing a hard and fast value. In keeping with their submit, they’re “taking affords solely.”
This declare follows a rising sample from the identical actor, who just lately alleged a breach involving Magento through a 3rd get together and beforehand took credit score for the Tracelo breach affecting 1.4 million customers. Simply final week, Satanic additionally claimed to have breached Twilio’s SendGrid, although that incident was publicly denied by the corporate.
If the WooCommerce-related breach proves genuine, it could characterize one of many largest recognized exposures involving WordPress-based commerce platforms this 12 months. The mixture of non-public contact data, enterprise intelligence, and expertise stack profiling makes the dataset priceless for menace actors engaged in phishing, social engineering, or aggressive intelligence scraping.
On the time of publishing, WooCommerce has not issued any public assertion concerning the declare. Whereas Hackread.com has reached out to the corporate, companies counting on WooCommerce and related CRM or advertising instruments ought to take into account reviewing their third-party integrations and checking for uncommon information entry patterns.
This story is growing.
