✨ The Containment Era is here. Secure AI workloads before they breach. →The Containment Era is here. →The Containment Era is here. →Explore ✨
Consumer Goods
Breach intelligence, attack campaigns, and threat reports targeting the Consumer Goods sector.
Explore Other Sectors
Consumer Goods Threat Reports
CISA Highlights Critical Magento Vulnerability CVE-2026-45247 Amid Active Exploitation
In early June 2026, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) added CVE-2026-45247 to its Known Exploited Vulnerabilities (KEV) catalog, following reports of active exploitation. This critical vulnerability, with a CVSS score of 9.8, affects Mirasvit's Full Page Cache Warmer extension for Magento 2 versions prior to 1.11.12. The flaw allows unauthenticated attackers to execute arbitrary PHP code on affected servers by sending crafted serialized PHP objects via the CacheWarmer cookie. Exploitation has been observed targeting gaming and business websites, particularly in the U.S., U.K., France, and Australia. Organizations are urged to apply the provided patches by June 6, 2026, and audit for suspicious CacheWarmer cookie values indicative of exploitation attempts. The inclusion of CVE-2026-45247 in the KEV catalog underscores the persistent threat posed by deserialization vulnerabilities in widely used web applications. This incident highlights the importance of timely patching and vigilant monitoring to prevent unauthorized code execution and potential data breaches.
3 weeks ago
Kill Chain
7-Eleven Data Breach: A Wake-Up Call for Cloud Security
In April 2026, 7-Eleven experienced a significant data breach when the cybercriminal group ShinyHunters infiltrated the company's Salesforce environment. The attackers exfiltrated over 600,000 records containing personally identifiable information (PII) and internal corporate data. After ransom negotiations failed, ShinyHunters leaked a 9.4GB archive of the stolen data on the dark web, exposing sensitive information of approximately 185,300 individuals, including names, email addresses, phone numbers, physical addresses, and dates of birth. ([techcrunch.com](https://techcrunch.com/2026/05/26/7-eleven-data-breach-affects-over-185000-peoples-personal-data/?utm_source=openai)) This incident underscores the escalating threat posed by cyber extortion groups targeting large corporations through sophisticated attacks on cloud-based platforms. Organizations must prioritize securing their third-party integrations and cloud environments to mitigate such risks. ([cybernews.com](https://cybernews.com/cybercrime/7-eleven-confirms-april-cyberattack-shinyhunters/?utm_source=openai))
1 month ago
Kill Chain
Rituals Data Breach 2026: Safeguarding Customer Information
In April 2026, Dutch cosmetics company Rituals experienced a data breach affecting its 'My Rituals' membership database. Unauthorized parties accessed and downloaded personal information, including full names, email addresses, phone numbers, dates of birth, gender, and home addresses. Notably, no passwords or payment information were compromised. The company promptly contained the breach, notified affected customers, and initiated a forensic investigation to prevent future incidents. This incident underscores the growing trend of cyberattacks targeting customer loyalty programs, which often house extensive personal data. Organizations must prioritize the security of such databases to mitigate risks associated with unauthorized access and potential misuse of personal information.
2 months ago
Kill Chain
Hasbro's 2026 Cyberattack: A Wake-Up Call for Corporate Cybersecurity
In late March 2026, Hasbro, Inc., a leading American toy and entertainment company, detected unauthorized access to its network. Upon discovery on March 28, the company promptly activated its security incident response protocols, implemented containment measures—including taking certain systems offline—and engaged third-party cybersecurity experts to investigate the breach. While essential business operations such as order processing and product shipping continued through business continuity plans, Hasbro cautioned that interim measures might persist for several weeks, potentially causing delays. The full scope of the incident, including whether sensitive data was compromised, remains under investigation. ([techcrunch.com](https://techcrunch.com/2026/04/01/hasbro-hacked-may-take-several-weeks-to-recover/?utm_source=openai)) This incident underscores the escalating threat landscape facing large corporations, particularly those with complex digital infrastructures. The attack on Hasbro highlights the critical importance of robust cybersecurity measures and incident response strategies to mitigate operational disruptions and protect sensitive information.
2 months ago
Kill Chain
Magento 'PolyShell' Vulnerability: Unauthenticated RCE Threatens E-Commerce Security
In March 2026, a critical vulnerability known as 'PolyShell' was discovered in Magento's REST API, allowing unauthenticated attackers to upload arbitrary executables, leading to remote code execution and potential account takeovers. This flaw, identified as CVE-2026-12345, affects Adobe Commerce versions 2.4.9-alpha3 and earlier, as well as corresponding versions of Magento Open Source and Adobe Commerce B2B. Adobe released a security update (APSB26-05) on March 10, 2026, to address this issue. ([helpx.adobe.com](https://helpx.adobe.com/security/products/magento/apsb26-05.html?utm_source=openai)) The 'PolyShell' vulnerability underscores the ongoing risks associated with web application security, particularly in widely used e-commerce platforms. Organizations are urged to apply the latest security patches promptly to mitigate potential exploitation, as similar vulnerabilities have been actively targeted in the past. ([f5.com](https://www.f5.com/labs/articles/weekly-threat-bulletin-february-4th-2026?utm_source=openai))
3 months ago
Kill Chain
AkzoNobel's 2026 Encounter with Anubis Ransomware: A Case Study
In early March 2026, AkzoNobel, a leading multinational paint and coatings company, experienced a cyberattack at one of its U.S. sites. The Anubis ransomware group claimed responsibility, asserting they had exfiltrated 170GB of sensitive data, including confidential client agreements, personal employee information, and internal technical documents. AkzoNobel confirmed the breach, stating it was contained to the specific site and that the impact was limited. The company is collaborating with relevant authorities and has initiated notifications to affected parties. This incident underscores the evolving tactics of ransomware groups like Anubis, which have expanded their operations to include data exfiltration and destruction, increasing pressure on victims. Organizations must remain vigilant, as such attacks highlight the critical need for robust cybersecurity measures and incident response plans to mitigate potential damages.
3 months ago
Kill Chain
ShinyHunters Expose 600K Canada Goose Customer Records in 2026 Data Breach
In February 2026, the cybercriminal group ShinyHunters claimed responsibility for exfiltrating over 600,000 customer records from Canada Goose, a luxury outerwear brand. The compromised data includes personal information such as names, email addresses, phone numbers, billing and shipping addresses, IP addresses, and order histories. Additionally, partial payment card information, including card brands and the last four digits of card numbers, was exposed. Canada Goose has stated that the dataset appears to relate to past customer transactions and that there is no evidence of a breach of its own systems. The company is currently reviewing the dataset to assess its accuracy and scope. This incident underscores the persistent threat posed by data extortion groups like ShinyHunters, who have been linked to numerous high-profile breaches targeting e-commerce platforms and cloud environments. Organizations are urged to enhance their cybersecurity measures, particularly in securing customer data and monitoring third-party service providers, to mitigate the risk of such attacks.
4 months ago
Kill Chain
Leroy Merlin Customer Data Breach Exposes Personal Information in France
In June 2024, French home improvement retailer Leroy Merlin disclosed a security incident impacting its French customer base. Attackers gained unauthorized access to customer accounts and personal data, including names, email addresses, physical addresses, phone numbers, and order histories. While no financial data or passwords were compromised, the company became aware of unusual activity and swiftly launched an internal investigation and incident response procedures. Affected users were notified and advised to remain vigilant against phishing attempts. The incident has triggered regulatory attention and widespread concern among customers. The breach at Leroy Merlin highlights the increasing frequency of attacks targeting customer data in the retail sector. As organizations digitize more customer interactions, they face mounting regulatory pressure to safeguard personal information and promptly report security incidents to minimize reputational and financial risk.
5 months ago
Kill Chain
Fake Calendly Invites Target Top Brands to Hijack Business Ad Accounts
In mid-2024, a sophisticated phishing campaign leveraged fake Calendly invitation emails to impersonate established brands such as Unilever, Disney, MasterCard, LVMH, and Uber. The attackers crafted convincing lures to target business users and administrators, aiming to harvest credentials for Google Workspace and Facebook Business accounts. Victims who clicked malicious links were redirected to lookalike phishing pages designed to steal login data, potentially enabling unauthorized access to digital ad campaigns, sensitive corporate data, and financial assets. The tactics combined brand impersonation, social engineering, and business workflow subversion, which heightened trust and success rates for attackers. This incident underscores the growing risks of identity-driven attacks that target business SaaS platforms, as cybercriminals increasingly exploit collaboration tools to penetrate defenses. Such phishing methods continue to evolve, challenging traditional detection and user awareness while putting critical business operations at risk.
5 months ago
Kill Chain
Asahi Group Data Breach: 1.9 Million Records Exposed in 2023 Cyberattack
In September 2023, Asahi Group Holdings, Japan’s largest beer producer, experienced a significant data breach affecting up to 1.9 million individuals, including customers, business partners, and employees. The investigation revealed that threat actors accessed personal data such as names, addresses, phone numbers, and email addresses through unauthorized access to its IT systems. Asahi’s systems were compromised via a cyberattack, resulting in the potential leak of sensitive information, although there was no initial evidence of misuse or ransomware demands reported. The company has since completed its forensic review and alerted regulatory bodies and affected individuals. This incident highlights the growing scale and impact of cyberattacks on major global brands and the risks posed by large-scale data exposures. With increasing regulatory scrutiny and evolving attacker methodologies targeting consumer data, organizations across all sectors face heightened pressure to enhance detection, segmentation, and rapid response to data breaches.
5 months ago
Kill Chain
Brightpick ICS Flaws Expose Critical Automation Functions and Credentials Globally
In November 2025, vulnerabilities were discovered in Brightpick AI's Mission Control and Internal Logic Control, software used for warehouse automation globally. Security researcher Souvik Kandar disclosed that all product versions lacked authentication for critical functions and exposed sensitive credentials via unencrypted channels, including WebSocket traffic accessible without prior authentication. If exploited, attackers could manipulate robot controls or intercept sensitive information, posing operational and confidentiality risks to organizations in sectors such as manufacturing, healthcare, and logistics. Brightpick AI had not issued a response or patch at the time of the initial disclosure. This incident stands out due to its impact on operational technology and industrial control systems, highlighting the widespread risk of exposed critical functions and hardcoded credentials in automation platforms. With growing connectivity in ICS environments, such vulnerabilities reflect an urgent need for organizations to bolster segmentation, credential management, and network security controls.
5 months ago
Kill Chain
SessionReaper in the Wild: How a 2025 Adobe Commerce Flaw Fueled E-Commerce Breaches
In early 2025, a critical security vulnerability (CVE-2025-54236) was discovered in Adobe Commerce, formerly known as Magento. This flaw, actively exploited in the wild as 'SessionReaper,' enables remote attackers to hijack user sessions on e-commerce sites, bypassing authentication controls. Attackers leveraged this weakness to compromise sensitive customer data, manipulate transactions, and disrupt online sales operations for affected merchants. The exploitation led to significant financial and reputational risks, prompting rapid incident response and emergency patching. This incident highlights the growing trend of sophisticated web application attacks targeting popular e-commerce platforms. As threat actors increasingly weaponize session hijacking techniques and exploit critical flaws pre-patch, organizations must prioritize timely vulnerability management and layered defenses to protect customer trust and regulatory compliance.
5 months ago
Kill Chain
Stop Active Cloud Data Exfiltration
Aviatrix Breach Lock helps teams instantly identify what data is leaving the environment, from which workload, and where it’s going — during an active breach.
Looking for threats in a different sector?
Browse All Threat Reports